Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/397066?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/397066?format=api", "purl": "pkg:generic/curl.se/curl@7.15.4", "type": "generic", "namespace": "curl.se", "name": "curl", "version": "7.15.4", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "8.20.0", "latest_non_vulnerable_version": "8.20.0", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1961?format=api", "vulnerability_id": "VCID-2swf-9ue2-kfgk", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8619.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03363", "scoring_system": "epss", "scoring_elements": "0.87622", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03363", "scoring_system": "epss", "scoring_elements": "0.87668", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.03363", "scoring_system": "epss", "scoring_elements": "0.87671", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.03363", "scoring_system": "epss", "scoring_elements": "0.87664", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8619" }, { "reference_url": "https://curl.se/docs/CVE-2016-8619.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8619.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388379", "reference_id": "1388379", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388379" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8619" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2swf-9ue2-kfgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/66?format=api", "vulnerability_id": "VCID-2zkw-u7gs-vyhc", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3389", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03832", "scoring_system": "epss", "scoring_elements": "0.88417", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03832", "scoring_system": "epss", "scoring_elements": "0.88457", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.03832", "scoring_system": "epss", "scoring_elements": "0.88464", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3389" }, { "reference_url": "https://curl.se/docs/CVE-2011-3389.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2011-3389.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=737506", "reference_id": "737506", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=737506" }, { "reference_url": "https://security.gentoo.org/glsa/201111-02", "reference_id": "GLSA-201111-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201111-02" }, { "reference_url": "https://security.gentoo.org/glsa/201203-02", "reference_id": "GLSA-201203-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201203-02" }, { "reference_url": "https://security.gentoo.org/glsa/201301-01", "reference_id": "GLSA-201301-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201301-01" }, { "reference_url": "https://security.gentoo.org/glsa/201406-32", "reference_id": "GLSA-201406-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201406-32" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1380", "reference_id": "RHSA-2011:1380", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1380" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1384", "reference_id": "RHSA-2011:1384", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1384" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0006", "reference_id": "RHSA-2012:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0034", "reference_id": "RHSA-2012:0034", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0343", "reference_id": "RHSA-2012:0343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0508", "reference_id": "RHSA-2012:0508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1455", "reference_id": "RHSA-2013:1455", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1455" }, { "reference_url": "https://usn.ubuntu.com/1263-1/", "reference_id": "USN-1263-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1263-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397099?format=api", "purl": "pkg:generic/curl.se/curl@7.24.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7prf-q325-3ygv" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9h7c-smy1-ckcc" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-fguu-tg7a-bfh9" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jffb-7ku1-v7d2" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.24.0" } ], "aliases": [ "CVE-2011-3389" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2zkw-u7gs-vyhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12051?format=api", "vulnerability_id": "VCID-325c-cvw6-6qgt", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32221.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32221.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-32221", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01853", "scoring_system": "epss", "scoring_elements": "0.83495", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01853", "scoring_system": "epss", "scoring_elements": "0.83497", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01853", "scoring_system": "epss", "scoring_elements": "0.83489", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01853", "scoring_system": "epss", "scoring_elements": "0.83429", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-32221" }, { "reference_url": "https://curl.se/docs/CVE-2022-32221.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2022-32221.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/1704017", "reference_id": "1704017", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://hackerone.com/reports/1704017" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jan/19", "reference_id": "19", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jan/19" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jan/20", "reference_id": "20", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jan/20" }, { "reference_url": "https://security.gentoo.org/glsa/202212-01", "reference_id": "202212-01", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://security.gentoo.org/glsa/202212-01" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135411", "reference_id": "2135411", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135411" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2023/05/17/4", "reference_id": "4", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2023/05/17/4" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5330", "reference_id": "dsa-5330", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5330" }, { "reference_url": "https://support.apple.com/kb/HT213604", "reference_id": "HT213604", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://support.apple.com/kb/HT213604" }, { "reference_url": "https://support.apple.com/kb/HT213605", "reference_id": "HT213605", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://support.apple.com/kb/HT213605" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html", "reference_id": "msg00028.html", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0006/", "reference_id": "ntap-20230110-0006", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0006/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230208-0002/", "reference_id": "ntap-20230208-0002", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-20T15:51:51Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230208-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8840", "reference_id": "RHSA-2022:8840", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8840" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8841", "reference_id": "RHSA-2022:8841", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8841" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0333", "reference_id": "RHSA-2023:0333", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0333" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4139", "reference_id": "RHSA-2023:4139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4139" }, { "reference_url": "https://usn.ubuntu.com/5702-1/", "reference_id": "USN-5702-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5702-1/" }, { "reference_url": "https://usn.ubuntu.com/5702-2/", "reference_id": "USN-5702-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5702-2/" }, { "reference_url": "https://usn.ubuntu.com/5823-1/", "reference_id": "USN-5823-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5823-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397184?format=api", "purl": "pkg:generic/curl.se/curl@7.86.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-f4c9-1he1-9fb5" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-q48h-p22q-nkae" }, { "vulnerability": "VCID-qzaj-5374-q3ct" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tr9z-2dn3-qycw" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xhet-h2we-v7dr" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.86.0" } ], "aliases": [ "CVE-2022-32221" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-325c-cvw6-6qgt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30056?format=api", "vulnerability_id": "VCID-32d9-adqp-vfet", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6429.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6429.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6429", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06079", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06056", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.0607", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.07127", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6429" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6429", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6429" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461205", "reference_id": "2461205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461205" }, { "reference_url": "https://hackerone.com/reports/3677759", "reference_id": "3677759", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T14:03:52Z/" } ], "url": "https://hackerone.com/reports/3677759" }, { "reference_url": "https://curl.se/docs/CVE-2026-6429.html", "reference_id": "CVE-2026-6429.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T14:03:52Z/" } ], "url": "https://curl.se/docs/CVE-2026-6429.html" }, { "reference_url": "https://curl.se/docs/CVE-2026-6429.json", "reference_id": "CVE-2026-6429.json", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T14:03:52Z/" } ], "url": "https://curl.se/docs/CVE-2026-6429.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12916", "reference_id": "RHSA-2026:12916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12916" }, { "reference_url": "https://usn.ubuntu.com/8227-1/", "reference_id": "USN-8227-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8227-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397218?format=api", "purl": "pkg:generic/curl.se/curl@8.20.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0" } ], "aliases": [ "CVE-2026-6429" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-32d9-adqp-vfet" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/185113?format=api", "vulnerability_id": "VCID-3mqm-821r-pyf5", "summary": "A vulnerability in cURL may allow for arbitrary file access.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0037.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0037.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0037", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09919", "scoring_system": "epss", "scoring_elements": "0.93187", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.09919", "scoring_system": "epss", "scoring_elements": "0.93209", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.09919", "scoring_system": "epss", "scoring_elements": "0.93211", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.09919", "scoring_system": "epss", "scoring_elements": "0.93212", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0037" }, { "reference_url": "https://curl.se/docs/CVE-2009-0037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2009-0037.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0037", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0037" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=485271", "reference_id": "485271", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=485271" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518423", "reference_id": "518423", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518423" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32834.txt", "reference_id": "CVE-2009-0037;OSVDB-53572", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32834.txt" }, { "reference_url": "https://www.securityfocus.com/bid/33962/info", "reference_id": "CVE-2009-0037;OSVDB-53572", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/33962/info" }, { "reference_url": "https://security.gentoo.org/glsa/200903-21", "reference_id": "GLSA-200903-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200903-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:0341", "reference_id": "RHSA-2009:0341", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:0341" }, { "reference_url": "https://usn.ubuntu.com/726-1/", "reference_id": "USN-726-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/726-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397082?format=api", "purl": "pkg:generic/curl.se/curl@7.19.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2zkw-u7gs-vyhc" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7prf-q325-3ygv" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bfzr-e6pf-53hk" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-fg4t-xewt-83dh" }, { "vulnerability": "VCID-fguu-tg7a-bfh9" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jffb-7ku1-v7d2" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u361-3r1v-2feu" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.4" } ], "aliases": [ "CVE-2009-0037" ], "risk_score": 9.6, "exploitability": "2.0", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3mqm-821r-pyf5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1965?format=api", "vulnerability_id": "VCID-4b1m-dqzp-3bcd", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01276", "scoring_system": "epss", "scoring_elements": "0.80037", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01276", "scoring_system": "epss", "scoring_elements": "0.79964", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01276", "scoring_system": "epss", "scoring_elements": "0.80027", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01276", "scoring_system": "epss", "scoring_elements": "0.80045", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8623" }, { "reference_url": "https://curl.se/docs/CVE-2016-8623.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8623.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037192", "reference_id": "1037192", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "http://www.securitytracker.com/id/1037192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388388", "reference_id": "1388388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388388" }, { "reference_url": "https://security.gentoo.org/glsa/201701-47", "reference_id": "201701-47", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://security.gentoo.org/glsa/201701-47" }, { "reference_url": "http://www.securityfocus.com/bid/94106", "reference_id": "94106", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "http://www.securityfocus.com/bid/94106" }, { "reference_url": "https://curl.haxx.se/docs/adv_20161102I.html", "reference_id": "adv_20161102I.html", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://curl.haxx.se/docs/adv_20161102I.html" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "reference_id": "cpuoct2018-4428296.html", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "reference_url": "https://curl.haxx.se/CVE-2016-8623.patch", "reference_id": "CVE-2016-8623.patch", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://curl.haxx.se/CVE-2016-8623.patch" }, { "reference_url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623", "reference_id": "show_bug.cgi?id=CVE-2016-8623", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8623" }, { "reference_url": "https://www.tenable.com/security/tns-2016-21", "reference_id": "tns-2016-21", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:46:38Z/" } ], "url": "https://www.tenable.com/security/tns-2016-21" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8623" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4b1m-dqzp-3bcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4286?format=api", "vulnerability_id": "VCID-4qjs-fd78-8ybe", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000007.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000007.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000007", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03854", "scoring_system": "epss", "scoring_elements": "0.8847", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03854", "scoring_system": "epss", "scoring_elements": "0.88516", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.03854", "scoring_system": "epss", "scoring_elements": "0.8851", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000007" }, { "reference_url": "https://curl.se/docs/CVE-2018-1000007.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2018-1000007.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000007", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000007" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537125", "reference_id": "1537125", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537125" }, { "reference_url": "https://security.archlinux.org/ASA-201801-20", "reference_id": "ASA-201801-20", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-20" }, { "reference_url": "https://security.archlinux.org/ASA-201801-22", "reference_id": "ASA-201801-22", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-22" }, { "reference_url": "https://security.archlinux.org/ASA-201801-23", "reference_id": "ASA-201801-23", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-23" }, { "reference_url": "https://security.archlinux.org/ASA-201801-24", "reference_id": "ASA-201801-24", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-24" }, { "reference_url": "https://security.archlinux.org/ASA-201801-25", "reference_id": "ASA-201801-25", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-25" }, { "reference_url": "https://security.archlinux.org/ASA-201801-26", "reference_id": "ASA-201801-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-26" }, { "reference_url": "https://security.archlinux.org/AVG-593", "reference_id": "AVG-593", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-593" }, { "reference_url": "https://security.archlinux.org/AVG-594", "reference_id": "AVG-594", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-594" }, { "reference_url": "https://security.archlinux.org/AVG-595", "reference_id": "AVG-595", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-595" }, { "reference_url": "https://security.archlinux.org/AVG-596", "reference_id": "AVG-596", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-596" }, { "reference_url": "https://security.archlinux.org/AVG-597", "reference_id": "AVG-597", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-597" }, { "reference_url": "https://security.archlinux.org/AVG-598", "reference_id": "AVG-598", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-598" }, { "reference_url": "https://security.gentoo.org/glsa/201804-04", "reference_id": "GLSA-201804-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3157", "reference_id": "RHSA-2018:3157", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3157" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1543", "reference_id": "RHSA-2019:1543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1543" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0544", "reference_id": "RHSA-2020:0544", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0544" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0594", "reference_id": "RHSA-2020:0594", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0594" }, { "reference_url": "https://usn.ubuntu.com/3554-1/", "reference_id": "USN-3554-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3554-1/" }, { "reference_url": "https://usn.ubuntu.com/3554-2/", "reference_id": "USN-3554-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3554-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397146?format=api", "purl": "pkg:generic/curl.se/curl@7.58.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fqju-fts8-jkgw" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gb5d-czbu-4yge" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.58.0" } ], "aliases": [ "CVE-2018-1000007" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4qjs-fd78-8ybe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9085?format=api", "vulnerability_id": "VCID-51te-du9b-53cr", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22924.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22924", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0056", "scoring_system": "epss", "scoring_elements": "0.68842", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0056", "scoring_system": "epss", "scoring_elements": "0.68845", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0056", "scoring_system": "epss", "scoring_elements": "0.6874", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0056", "scoring_system": "epss", "scoring_elements": "0.68832", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22924" }, { "reference_url": "https://curl.se/docs/CVE-2021-22924.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2021-22924.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/1223565", "reference_id": "1223565", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://hackerone.com/reports/1223565" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1981460", "reference_id": "1981460", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1981460" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991492", "reference_id": "991492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991492" }, { "reference_url": "https://security.archlinux.org/ASA-202107-59", "reference_id": "ASA-202107-59", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-59" }, { "reference_url": "https://security.archlinux.org/ASA-202107-60", "reference_id": "ASA-202107-60", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-60" }, { "reference_url": "https://security.archlinux.org/ASA-202107-61", "reference_id": "ASA-202107-61", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-61" }, { "reference_url": "https://security.archlinux.org/ASA-202107-62", "reference_id": "ASA-202107-62", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-62" }, { "reference_url": "https://security.archlinux.org/ASA-202107-63", "reference_id": "ASA-202107-63", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-63" }, { "reference_url": "https://security.archlinux.org/ASA-202107-64", "reference_id": "ASA-202107-64", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-64" }, { "reference_url": "https://security.archlinux.org/AVG-2194", "reference_id": "AVG-2194", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2194" }, { "reference_url": "https://security.archlinux.org/AVG-2195", "reference_id": "AVG-2195", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2195" }, { "reference_url": "https://security.archlinux.org/AVG-2196", "reference_id": "AVG-2196", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2196" }, { "reference_url": "https://security.archlinux.org/AVG-2197", "reference_id": "AVG-2197", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2197" }, { "reference_url": "https://security.archlinux.org/AVG-2198", "reference_id": "AVG-2198", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2198" }, { "reference_url": "https://security.archlinux.org/AVG-2199", "reference_id": "AVG-2199", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2199" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2022.html", "reference_id": "cpujan2022.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2021.html", "reference_id": "cpuoct2021.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2021.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22924", "reference_id": "CVE-2021-22924", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22924" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5197", "reference_id": "dsa-5197", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5197" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/", "reference_id": "FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210902-0003/", "reference_id": "ntap-20210902-0003", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210902-0003/" }, { "reference_url": "https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E", "reference_id": "r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cdev.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E", "reference_id": "r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc%40%3Cusers.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E", "reference_id": "rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cdev.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E", "reference_id": "rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7%40%3Cusers.kafka.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3582", "reference_id": "RHSA-2021:3582", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3582" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1354", "reference_id": "RHSA-2022:1354", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1354" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf", "reference_id": "ssa-389290.pdf", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf", "reference_id": "ssa-484086.pdf", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf", "reference_id": "ssa-732250.pdf", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-27T19:35:55Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-732250.pdf" }, { "reference_url": "https://usn.ubuntu.com/5021-1/", "reference_id": "USN-5021-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5021-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397174?format=api", "purl": "pkg:generic/curl.se/curl@7.78.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1gxw-nhcc-9fas" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2hty-64mk-rba6" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-85pa-r1x5-7bb9" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-g888-a9ew-ekf7" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q48h-p22q-nkae" }, { "vulnerability": "VCID-rfx7-krcf-dyhg" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tr9z-2dn3-qycw" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xhet-h2we-v7dr" }, { "vulnerability": "VCID-xxa9-79q7-cfdf" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0" } ], "aliases": [ "CVE-2021-22924" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-51te-du9b-53cr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/109498?format=api", "vulnerability_id": "VCID-5ykg-9jhc-tbc8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0138.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0138.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0138", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00666", "scoring_system": "epss", "scoring_elements": "0.71726", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00666", "scoring_system": "epss", "scoring_elements": "0.71812", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00666", "scoring_system": "epss", "scoring_elements": "0.71825", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00666", "scoring_system": "epss", "scoring_elements": "0.71822", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0138" }, { "reference_url": "https://curl.se/docs/CVE-2014-0138.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2014-0138.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1079148", "reference_id": "1079148", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1079148" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728", "reference_id": "742728", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728" }, { "reference_url": "https://security.gentoo.org/glsa/201406-21", "reference_id": "GLSA-201406-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201406-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0561", "reference_id": "RHSA-2014:0561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0561" }, { "reference_url": "https://usn.ubuntu.com/2167-1/", "reference_id": "USN-2167-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2167-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397112?format=api", "purl": "pkg:generic/curl.se/curl@7.36.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p43j-25js-27fb" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-v3pu-2sy3-mkfy" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w52f-grp3-bfcs" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0" } ], "aliases": [ "CVE-2014-0138" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5ykg-9jhc-tbc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12156?format=api", "vulnerability_id": "VCID-7g25-eu3j-77g3", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-35252.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-35252.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-35252", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52669", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52795", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52812", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52798", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-35252" }, { "reference_url": "https://curl.se/docs/CVE-2022-35252.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2022-35252.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018831", "reference_id": "1018831", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018831" }, { "reference_url": "https://hackerone.com/reports/1613943", "reference_id": "1613943", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "https://hackerone.com/reports/1613943" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jan/20", "reference_id": "20", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jan/20" }, { "reference_url": "https://security.gentoo.org/glsa/202212-01", "reference_id": "202212-01", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "https://security.gentoo.org/glsa/202212-01" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jan/21", "reference_id": "21", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jan/21" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2120718", "reference_id": "2120718", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2120718" }, { "reference_url": "https://support.apple.com/kb/HT213603", "reference_id": "HT213603", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "https://support.apple.com/kb/HT213603" }, { "reference_url": "https://support.apple.com/kb/HT213604", "reference_id": "HT213604", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "https://support.apple.com/kb/HT213604" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html", "reference_id": "msg00028.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220930-0005/", "reference_id": "ntap-20220930-0005", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:30:42Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20220930-0005/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8840", "reference_id": "RHSA-2022:8840", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8840" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8841", "reference_id": "RHSA-2022:8841", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8841" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2478", "reference_id": "RHSA-2023:2478", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2478" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2963", "reference_id": "RHSA-2023:2963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0428", "reference_id": "RHSA-2024:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0428" }, { "reference_url": "https://usn.ubuntu.com/5587-1/", "reference_id": "USN-5587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5587-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397183?format=api", "purl": "pkg:generic/curl.se/curl@7.85.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2hty-64mk-rba6" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-f4c9-1he1-9fb5" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-g888-a9ew-ekf7" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-q48h-p22q-nkae" }, { "vulnerability": "VCID-qzaj-5374-q3ct" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tr9z-2dn3-qycw" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-vauj-bu55-s3a7" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xhet-h2we-v7dr" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.85.0" } ], "aliases": [ "CVE-2022-35252" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7g25-eu3j-77g3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/104525?format=api", "vulnerability_id": "VCID-7prf-q325-3ygv", "summary": "heap overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2174.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2174.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-2174", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03181", "scoring_system": "epss", "scoring_elements": "0.87249", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03181", "scoring_system": "epss", "scoring_elements": "0.87294", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.03181", "scoring_system": "epss", "scoring_elements": "0.87301", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.03181", "scoring_system": "epss", "scoring_elements": "0.87298", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-2174" }, { "reference_url": "https://curl.se/docs/CVE-2013-2174.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2013-2174.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2174", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2174" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=965640", "reference_id": "965640", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=965640" }, { "reference_url": "https://security.gentoo.org/glsa/201401-14", "reference_id": "GLSA-201401-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-14" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:0983", "reference_id": "RHSA-2013:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:0983" }, { "reference_url": "https://usn.ubuntu.com/1894-1/", "reference_id": "USN-1894-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1894-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397107?format=api", "purl": "pkg:generic/curl.se/curl@7.31.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-3r3e-8zwt-4uhy" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9h7c-smy1-ckcc" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-fguu-tg7a-bfh9" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p43j-25js-27fb" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-spxq-acja-cyce" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-v3pu-2sy3-mkfy" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w52f-grp3-bfcs" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.31.0" } ], "aliases": [ "CVE-2013-2174" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7prf-q325-3ygv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9086?format=api", "vulnerability_id": "VCID-7r2a-yuyx-r7ak", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22925.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22925.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22925", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46307", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46449", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46463", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46453", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22925" }, { "reference_url": "https://curl.se/docs/CVE-2021-22925.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2021-22925.html" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/1223882", "reference_id": "1223882", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://hackerone.com/reports/1223882" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970902", "reference_id": "1970902", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970902" }, { "reference_url": "https://security.gentoo.org/glsa/202212-01", "reference_id": "202212-01", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://security.gentoo.org/glsa/202212-01" }, { "reference_url": "http://seclists.org/fulldisclosure/2021/Sep/39", "reference_id": "39", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "http://seclists.org/fulldisclosure/2021/Sep/39" }, { "reference_url": "http://seclists.org/fulldisclosure/2021/Sep/40", "reference_id": "40", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "http://seclists.org/fulldisclosure/2021/Sep/40" }, { "reference_url": "https://security.archlinux.org/ASA-202107-59", "reference_id": "ASA-202107-59", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-59" }, { "reference_url": "https://security.archlinux.org/ASA-202107-60", "reference_id": "ASA-202107-60", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-60" }, { "reference_url": "https://security.archlinux.org/ASA-202107-61", "reference_id": "ASA-202107-61", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-61" }, { "reference_url": "https://security.archlinux.org/ASA-202107-62", "reference_id": "ASA-202107-62", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-62" }, { "reference_url": "https://security.archlinux.org/ASA-202107-63", "reference_id": "ASA-202107-63", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-63" }, { "reference_url": "https://security.archlinux.org/ASA-202107-64", "reference_id": "ASA-202107-64", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202107-64" }, { "reference_url": "https://security.archlinux.org/AVG-2194", "reference_id": "AVG-2194", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2194" }, { "reference_url": "https://security.archlinux.org/AVG-2195", "reference_id": "AVG-2195", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2195" }, { "reference_url": "https://security.archlinux.org/AVG-2196", "reference_id": "AVG-2196", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2196" }, { "reference_url": "https://security.archlinux.org/AVG-2197", "reference_id": "AVG-2197", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2197" }, { "reference_url": "https://security.archlinux.org/AVG-2198", "reference_id": "AVG-2198", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2198" }, { "reference_url": "https://security.archlinux.org/AVG-2199", "reference_id": "AVG-2199", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2199" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2022.html", "reference_id": "cpujan2022.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2021.html", "reference_id": "cpuoct2021.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/", "reference_id": "FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/" }, { "reference_url": "https://support.apple.com/kb/HT212804", "reference_id": "HT212804", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://support.apple.com/kb/HT212804" }, { "reference_url": "https://support.apple.com/kb/HT212805", "reference_id": "HT212805", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://support.apple.com/kb/HT212805" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210902-0003/", "reference_id": "ntap-20210902-0003", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210902-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4511", "reference_id": "RHSA-2021:4511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4511" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf", "reference_id": "ssa-389290.pdf", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf", "reference_id": "ssa-484086.pdf", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T16:36:17Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf" }, { "reference_url": "https://usn.ubuntu.com/5021-1/", "reference_id": "USN-5021-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5021-1/" }, { "reference_url": "https://usn.ubuntu.com/5021-2/", "reference_id": "USN-5021-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5021-2/" }, { "reference_url": "https://usn.ubuntu.com/5894-1/", "reference_id": "USN-5894-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5894-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397174?format=api", "purl": "pkg:generic/curl.se/curl@7.78.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1gxw-nhcc-9fas" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2hty-64mk-rba6" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-85pa-r1x5-7bb9" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-g888-a9ew-ekf7" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q48h-p22q-nkae" }, { "vulnerability": "VCID-rfx7-krcf-dyhg" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tr9z-2dn3-qycw" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xhet-h2we-v7dr" }, { "vulnerability": "VCID-xxa9-79q7-cfdf" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.78.0" } ], "aliases": [ "CVE-2021-22925" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7r2a-yuyx-r7ak" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/178?format=api", "vulnerability_id": "VCID-8cn5-mxer-63fn", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0015.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0015.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0015", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01266", "scoring_system": "epss", "scoring_elements": "0.79875", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01266", "scoring_system": "epss", "scoring_elements": "0.79939", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01266", "scoring_system": "epss", "scoring_elements": "0.79956", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01266", "scoring_system": "epss", "scoring_elements": "0.79949", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0015" }, { "reference_url": "https://curl.se/docs/CVE-2014-0015.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2014-0015.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0015", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0015" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053903", "reference_id": "1053903", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1053903" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0561", "reference_id": "RHSA-2014:0561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0561" }, { "reference_url": "https://usn.ubuntu.com/2097-1/", "reference_id": "USN-2097-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2097-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397111?format=api", "purl": "pkg:generic/curl.se/curl@7.35.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-3r3e-8zwt-4uhy" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p43j-25js-27fb" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-spxq-acja-cyce" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-v3pu-2sy3-mkfy" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w52f-grp3-bfcs" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.35.0" } ], "aliases": [ "CVE-2014-0015" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8cn5-mxer-63fn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1957?format=api", "vulnerability_id": "VCID-8cx8-3gfg-qydz", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8615.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8615.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04182", "scoring_system": "epss", "scoring_elements": "0.88955", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.04182", "scoring_system": "epss", "scoring_elements": "0.88998", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.04182", "scoring_system": "epss", "scoring_elements": "0.88999", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.04182", "scoring_system": "epss", "scoring_elements": "0.88992", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8615" }, { "reference_url": "https://curl.se/docs/CVE-2016-8615.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8615.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037192", "reference_id": "1037192", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "http://www.securitytracker.com/id/1037192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388370", "reference_id": "1388370", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388370" }, { "reference_url": "https://security.gentoo.org/glsa/201701-47", "reference_id": "201701-47", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://security.gentoo.org/glsa/201701-47" }, { "reference_url": "http://www.securityfocus.com/bid/94096", "reference_id": "94096", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "http://www.securityfocus.com/bid/94096" }, { "reference_url": "https://curl.haxx.se/docs/adv_20161102A.html", "reference_id": "adv_20161102A.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://curl.haxx.se/docs/adv_20161102A.html" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "reference_id": "cpuoct2018-4428296.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "reference_url": "https://curl.haxx.se/CVE-2016-8615.patch", "reference_id": "CVE-2016-8615.patch", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://curl.haxx.se/CVE-2016-8615.patch" }, { "reference_url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615", "reference_id": "show_bug.cgi?id=CVE-2016-8615", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8615" }, { "reference_url": "https://www.tenable.com/security/tns-2016-21", "reference_id": "tns-2016-21", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:35:21Z/" } ], "url": "https://www.tenable.com/security/tns-2016-21" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8615" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8cx8-3gfg-qydz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30008?format=api", "vulnerability_id": "VCID-9q4b-nx61-k3e8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5545.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5545.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-5545", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11192", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11126", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11185", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12223", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-5545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461204", "reference_id": "2461204", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461204" }, { "reference_url": "https://hackerone.com/reports/3642555", "reference_id": "3642555", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/" } ], "url": "https://hackerone.com/reports/3642555" }, { "reference_url": "https://curl.se/docs/CVE-2026-5545.html", "reference_id": "CVE-2026-5545.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N" }, { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/" } ], "url": "https://curl.se/docs/CVE-2026-5545.html" }, { "reference_url": "https://curl.se/docs/CVE-2026-5545.json", "reference_id": "CVE-2026-5545.json", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:46:36Z/" } ], "url": "https://curl.se/docs/CVE-2026-5545.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12916", "reference_id": "RHSA-2026:12916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12916" }, { "reference_url": "https://usn.ubuntu.com/8227-1/", "reference_id": "USN-8227-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8227-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397218?format=api", "purl": "pkg:generic/curl.se/curl@8.20.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0" } ], "aliases": [ "CVE-2026-5545" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9q4b-nx61-k3e8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/28470?format=api", "vulnerability_id": "VCID-9z9v-xfyw-s7gq", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3784.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3784.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-3784", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08708", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08706", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08714", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08666", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-3784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446449", "reference_id": "2446449", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446449" }, { "reference_url": "https://hackerone.com/reports/3584903", "reference_id": "3584903", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/" } ], "url": "https://hackerone.com/reports/3584903" }, { "reference_url": "https://curl.se/docs/CVE-2026-3784.html", "reference_id": "CVE-2026-3784.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/" } ], "url": "https://curl.se/docs/CVE-2026-3784.html" }, { "reference_url": "https://curl.se/docs/CVE-2026-3784.json", "reference_id": "CVE-2026-3784.json", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-11T15:48:38Z/" } ], "url": "https://curl.se/docs/CVE-2026-3784.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6893", "reference_id": "RHSA-2026:6893", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6893" }, { "reference_url": "https://usn.ubuntu.com/8084-1/", "reference_id": "USN-8084-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8084-1/" }, { "reference_url": "https://usn.ubuntu.com/8099-1/", "reference_id": "USN-8099-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8099-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397217?format=api", "purl": "pkg:generic/curl.se/curl@8.19.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-5ggd-h3ve-z3hn" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-mazz-6byr-mue9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.19.0" } ], "aliases": [ "CVE-2026-3784" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9z9v-xfyw-s7gq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/200729?format=api", "vulnerability_id": "VCID-bbae-7dqd-eyg2", "summary": "libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3564.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3564.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3564", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.70883", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.70973", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.70986", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.70983", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3564" }, { "reference_url": "https://curl.se/docs/CVE-2007-3564.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2007-3564.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3564" }, { "reference_url": "https://usn.ubuntu.com/484-1/", "reference_id": "USN-484-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/484-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397072?format=api", "purl": "pkg:generic/curl.se/curl@7.16.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2zkw-u7gs-vyhc" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-3mqm-821r-pyf5" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7prf-q325-3ygv" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-bfzr-e6pf-53hk" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-fg4t-xewt-83dh" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jffb-7ku1-v7d2" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u361-3r1v-2feu" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.16.4" } ], "aliases": [ "CVE-2007-3564" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bbae-7dqd-eyg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/177598?format=api", "vulnerability_id": "VCID-bfzr-e6pf-53hk", "summary": "An error in the X.509 certificate handling of cURL might enable remote\n attackers to conduct man-in-the-middle attacks.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2417.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2417.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2417", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0733", "scoring_system": "epss", "scoring_elements": "0.91881", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0733", "scoring_system": "epss", "scoring_elements": "0.91908", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0733", "scoring_system": "epss", "scoring_elements": "0.91916", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0733", "scoring_system": "epss", "scoring_elements": "0.91912", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2417" }, { "reference_url": "https://curl.se/docs/CVE-2009-2417.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2009-2417.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2417", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2417" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=516181", "reference_id": "516181", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=516181" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541991", "reference_id": "541991", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541991" }, { "reference_url": "https://security.gentoo.org/glsa/200909-20", "reference_id": "GLSA-200909-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200909-20" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1209", "reference_id": "RHSA-2009:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1209" }, { "reference_url": "https://usn.ubuntu.com/1158-1/", "reference_id": "USN-1158-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1158-1/" }, { "reference_url": "https://usn.ubuntu.com/818-1/", "reference_id": "USN-818-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/818-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397084?format=api", "purl": "pkg:generic/curl.se/curl@7.19.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2zkw-u7gs-vyhc" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7prf-q325-3ygv" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-fg4t-xewt-83dh" }, { "vulnerability": "VCID-fguu-tg7a-bfh9" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jffb-7ku1-v7d2" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u361-3r1v-2feu" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.19.6" } ], "aliases": [ "CVE-2009-2417" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bfzr-e6pf-53hk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1792?format=api", "vulnerability_id": "VCID-c29a-wbxe-t3hp", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7167.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7167.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7167", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02257", "scoring_system": "epss", "scoring_elements": "0.85023", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.02257", "scoring_system": "epss", "scoring_elements": "0.84969", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02257", "scoring_system": "epss", "scoring_elements": "0.85021", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02257", "scoring_system": "epss", "scoring_elements": "0.8503", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7167" }, { "reference_url": "https://curl.se/docs/CVE-2016-7167.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-7167.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7167" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375906", "reference_id": "1375906", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837945", "reference_id": "837945", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837945" }, { "reference_url": "https://security.archlinux.org/ASA-201609-18", "reference_id": "ASA-201609-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201609-18" }, { "reference_url": "https://security.archlinux.org/ASA-201609-19", "reference_id": "ASA-201609-19", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201609-19" }, { "reference_url": "https://security.archlinux.org/AVG-20", "reference_id": "AVG-20", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-20" }, { "reference_url": "https://security.archlinux.org/AVG-21", "reference_id": "AVG-21", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2016", "reference_id": "RHSA-2017:2016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397133?format=api", "purl": "pkg:generic/curl.se/curl@7.50.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.3" } ], "aliases": [ "CVE-2016-7167" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c29a-wbxe-t3hp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4304?format=api", "vulnerability_id": "VCID-cfm3-jg25-2bge", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000120.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1000120.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000120", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01298", "scoring_system": "epss", "scoring_elements": "0.80194", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01298", "scoring_system": "epss", "scoring_elements": "0.80201", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01298", "scoring_system": "epss", "scoring_elements": "0.80209", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01298", "scoring_system": "epss", "scoring_elements": "0.80132", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1000120" }, { "reference_url": "https://curl.haxx.se/docs/adv_2018-9cd6.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://curl.haxx.se/docs/adv_2018-9cd6.html" }, { "reference_url": "https://curl.se/docs/CVE-2018-1000120.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2018-1000120.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000120", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000120" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000121", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000121" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000122", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000122" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/coapp-packages/curl", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/coapp-packages/curl" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00012.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/03/msg00012.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000120", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000120" }, { "reference_url": "https://usn.ubuntu.com/3598-1", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://usn.ubuntu.com/3598-1" }, { "reference_url": "https://usn.ubuntu.com/3598-2", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://usn.ubuntu.com/3598-2" }, { "reference_url": "https://web.archive.org/web/20201220134105/http://www.securitytracker.com/id/1040531", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20201220134105/http://www.securitytracker.com/id/1040531" }, { "reference_url": "https://web.archive.org/web/20201220134609/http://www.securityfocus.com/bid/103414", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20201220134609/http://www.securityfocus.com/bid/103414" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4136", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.debian.org/security/2018/dsa-4136" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1552628", "reference_id": "1552628", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1552628" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893546", "reference_id": "893546", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893546" }, { "reference_url": "https://security.archlinux.org/ASA-201803-15", "reference_id": "ASA-201803-15", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201803-15" }, { "reference_url": "https://security.archlinux.org/ASA-201803-16", "reference_id": "ASA-201803-16", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201803-16" }, { "reference_url": "https://security.archlinux.org/ASA-201803-17", "reference_id": "ASA-201803-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201803-17" }, { "reference_url": "https://security.archlinux.org/ASA-201803-18", "reference_id": "ASA-201803-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201803-18" }, { "reference_url": "https://security.archlinux.org/ASA-201803-19", "reference_id": "ASA-201803-19", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201803-19" }, { "reference_url": "https://security.archlinux.org/ASA-201803-20", "reference_id": "ASA-201803-20", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201803-20" }, { "reference_url": "https://security.archlinux.org/AVG-653", "reference_id": "AVG-653", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-653" }, { "reference_url": "https://security.archlinux.org/AVG-654", "reference_id": "AVG-654", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-654" }, { "reference_url": "https://security.archlinux.org/AVG-655", "reference_id": "AVG-655", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-655" }, { "reference_url": "https://security.archlinux.org/AVG-656", "reference_id": "AVG-656", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-656" }, { "reference_url": "https://security.archlinux.org/AVG-660", "reference_id": "AVG-660", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-660" }, { "reference_url": "https://security.archlinux.org/AVG-661", "reference_id": "AVG-661", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-661" }, { "reference_url": "https://github.com/advisories/GHSA-674j-7m97-j2p9", "reference_id": "GHSA-674j-7m97-j2p9", "reference_type": "", "scores": [ { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-674j-7m97-j2p9" }, { "reference_url": "https://security.gentoo.org/glsa/201804-04", "reference_id": "GLSA-201804-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3157", "reference_id": "RHSA-2018:3157", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3157" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1543", "reference_id": "RHSA-2019:1543", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2019:1543" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0544", "reference_id": "RHSA-2020:0544", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2020:0544" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0594", "reference_id": "RHSA-2020:0594", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2020:0594" }, { "reference_url": "https://usn.ubuntu.com/3598-1/", "reference_id": "USN-3598-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3598-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397147?format=api", "purl": "pkg:generic/curl.se/curl@7.59.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4xzf-tk9w-5beu" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fqju-fts8-jkgw" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gb5d-czbu-4yge" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.59.0" } ], "aliases": [ "CVE-2018-1000120", "GHSA-674j-7m97-j2p9" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cfm3-jg25-2bge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8785?format=api", "vulnerability_id": "VCID-cy1t-vy6m-pfep", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8284.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8284.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8284", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24457", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24451", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24468", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24262", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8284" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/1040166", "reference_id": "1040166", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://hackerone.com/reports/1040166" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902667", "reference_id": "1902667", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902667" }, { "reference_url": "https://security.gentoo.org/glsa/202012-14", "reference_id": "202012-14", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://security.gentoo.org/glsa/202012-14" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977163", "reference_id": "977163", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977163" }, { "reference_url": "https://security.archlinux.org/AVG-1337", "reference_id": "AVG-1337", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1337" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuApr2021.html", "reference_id": "cpuApr2021.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuApr2021.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2022.html", "reference_id": "cpuapr2022.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2022.html", "reference_id": "cpujan2022.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "reference_url": "https://www.oracle.com//security-alerts/cpujul2021.html", "reference_id": "cpujul2021.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://www.oracle.com//security-alerts/cpujul2021.html" }, { "reference_url": "https://curl.se/docs/CVE-2020-8284.html", "reference_id": "CVE-2020-8284.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://curl.se/docs/CVE-2020-8284.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/", "reference_id": "DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DAEHE2S2QLO4AO4MEEYL75NB7SAH5PSL/" }, { "reference_url": "https://www.debian.org/security/2021/dsa-4881", "reference_id": "dsa-4881", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://www.debian.org/security/2021/dsa-4881" }, { "reference_url": "https://support.apple.com/kb/HT212325", "reference_id": "HT212325", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://support.apple.com/kb/HT212325" }, { "reference_url": "https://support.apple.com/kb/HT212326", "reference_id": "HT212326", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://support.apple.com/kb/HT212326" }, { "reference_url": "https://support.apple.com/kb/HT212327", "reference_id": "HT212327", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://support.apple.com/kb/HT212327" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00029.html", "reference_id": "msg00029.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00029.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210122-0007/", "reference_id": "ntap-20210122-0007", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210122-0007/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/", "reference_id": "NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NZUVSQHN2ESHMJXNQ2Z7T2EELBB5HJXG/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1610", "reference_id": "RHSA-2021:1610", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1610" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2471", "reference_id": "RHSA-2021:2471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2472", "reference_id": "RHSA-2021:2472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2472" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf", "reference_id": "ssa-389290.pdf", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:56:25Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf" }, { "reference_url": "https://usn.ubuntu.com/4665-1/", "reference_id": "USN-4665-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4665-1/" }, { "reference_url": "https://usn.ubuntu.com/4665-2/", "reference_id": "USN-4665-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4665-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397169?format=api", "purl": "pkg:generic/curl.se/curl@7.74.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1gxw-nhcc-9fas" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-85pa-r1x5-7bb9" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d96k-76r3-qbdc" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fu9h-ndbg-ebe1" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-rfx7-krcf-dyhg" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xxa9-79q7-cfdf" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.74.0" } ], "aliases": [ "CVE-2020-8284" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cy1t-vy6m-pfep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15320?format=api", "vulnerability_id": "VCID-d9mq-vbxb-17da", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28321.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28321.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-28321", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00297", "scoring_system": "epss", "scoring_elements": "0.53409", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00297", "scoring_system": "epss", "scoring_elements": "0.53535", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.61396", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.614", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-28321" }, { "reference_url": "https://curl.se/docs/CVE-2023-28321.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2023-28321.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28321" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239", "reference_id": "1036239", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239" }, { "reference_url": "https://hackerone.com/reports/1950627", "reference_id": "1950627", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://hackerone.com/reports/1950627" }, { "reference_url": "https://security.gentoo.org/glsa/202310-12", "reference_id": "202310-12", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://security.gentoo.org/glsa/202310-12" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196786", "reference_id": "2196786", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196786" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/47", "reference_id": "47", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/47" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/48", "reference_id": "48", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/48" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/52", "reference_id": "52", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/52" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/", "reference_id": "F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/" }, { "reference_url": "https://support.apple.com/kb/HT213843", "reference_id": "HT213843", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://support.apple.com/kb/HT213843" }, { "reference_url": "https://support.apple.com/kb/HT213844", "reference_id": "HT213844", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://support.apple.com/kb/HT213844" }, { "reference_url": "https://support.apple.com/kb/HT213845", "reference_id": "HT213845", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://support.apple.com/kb/HT213845" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00016.html", "reference_id": "msg00016.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00016.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230609-0009/", "reference_id": "ntap-20230609-0009", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230609-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4354", "reference_id": "RHSA-2023:4354", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4354" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4523", "reference_id": "RHSA-2023:4523", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4523" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4628", "reference_id": "RHSA-2023:4628", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4628" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4629", "reference_id": "RHSA-2023:4629", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5598", "reference_id": "RHSA-2023:5598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6292", "reference_id": "RHSA-2023:6292", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6292" }, { "reference_url": "https://usn.ubuntu.com/6237-1/", "reference_id": "USN-6237-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6237-1/" }, { "reference_url": "https://usn.ubuntu.com/6237-3/", "reference_id": "USN-6237-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6237-3/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/", "reference_id": "Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:54:13Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397190?format=api", "purl": "pkg:generic/curl.se/curl@8.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-ahzz-h3g1-wycq" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-f4c9-1he1-9fb5" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0" } ], "aliases": [ "CVE-2023-28321" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d9mq-vbxb-17da" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/212433?format=api", "vulnerability_id": "VCID-dbxj-5bn1-pfcq", "summary": "cURL before 7.47.0 on Windows allows attackers to write to arbitrary files in the current working directory on a different drive via a colon in a remote file name.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-0754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57902", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.58015", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.5803", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.5802", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-0754" }, { "reference_url": "https://curl.se/docs/CVE-2016-0754.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-0754.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397125?format=api", "purl": "pkg:generic/curl.se/curl@7.47.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0" } ], "aliases": [ "CVE-2016-0754" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dbxj-5bn1-pfcq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1958?format=api", "vulnerability_id": "VCID-dnbc-x7gd-skdr", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8616.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04507", "scoring_system": "epss", "scoring_elements": "0.89381", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.04507", "scoring_system": "epss", "scoring_elements": "0.89424", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.04507", "scoring_system": "epss", "scoring_elements": "0.89426", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.04507", "scoring_system": "epss", "scoring_elements": "0.89419", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8616" }, { "reference_url": "https://curl.se/docs/CVE-2016-8616.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8616.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388371", "reference_id": "1388371", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388371" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8616" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dnbc-x7gd-skdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30045?format=api", "vulnerability_id": "VCID-dxfp-qwxm-r3aw", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6253.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6253.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6253", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.09012", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08964", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.09015", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09892", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6253" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6253", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6253" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461202", "reference_id": "2461202", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461202" }, { "reference_url": "https://hackerone.com/reports/3669637", "reference_id": "3669637", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:42:30Z/" } ], "url": "https://hackerone.com/reports/3669637" }, { "reference_url": "https://curl.se/docs/CVE-2026-6253.html", "reference_id": "CVE-2026-6253.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:42:30Z/" } ], "url": "https://curl.se/docs/CVE-2026-6253.html" }, { "reference_url": "https://curl.se/docs/CVE-2026-6253.json", "reference_id": "CVE-2026-6253.json", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-13T17:42:30Z/" } ], "url": "https://curl.se/docs/CVE-2026-6253.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12916", "reference_id": "RHSA-2026:12916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12916" }, { "reference_url": "https://usn.ubuntu.com/8227-1/", "reference_id": "USN-8227-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8227-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397218?format=api", "purl": "pkg:generic/curl.se/curl@8.20.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0" } ], "aliases": [ "CVE-2026-6253" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dxfp-qwxm-r3aw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/113204?format=api", "vulnerability_id": "VCID-efdr-svrq-s7ff", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8150.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8150.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8150", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01225", "scoring_system": "epss", "scoring_elements": "0.79537", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01225", "scoring_system": "epss", "scoring_elements": "0.79603", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01225", "scoring_system": "epss", "scoring_elements": "0.79619", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01225", "scoring_system": "epss", "scoring_elements": "0.79611", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8150" }, { "reference_url": "https://curl.se/docs/CVE-2014-8150.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2014-8150.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1178692", "reference_id": "1178692", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1178692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:1254", "reference_id": "RHSA-2015:1254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:1254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:2159", "reference_id": "RHSA-2015:2159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:2159" }, { "reference_url": "https://usn.ubuntu.com/2474-1/", "reference_id": "USN-2474-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2474-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397117?format=api", "purl": "pkg:generic/curl.se/curl@7.40.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-79bx-ksvr-t3c7" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-8qcc-cgax-w7f2" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t2d3-b9qt-mfea" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w52f-grp3-bfcs" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.40.0" } ], "aliases": [ "CVE-2014-8150" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-efdr-svrq-s7ff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/179859?format=api", "vulnerability_id": "VCID-fg4t-xewt-83dh", "summary": "Multiple vulnerabilities have been found in cURL, the worst of\n which might allow remote execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0734.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0734.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0734", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0548", "scoring_system": "epss", "scoring_elements": "0.90415", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0548", "scoring_system": "epss", "scoring_elements": "0.90445", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0548", "scoring_system": "epss", "scoring_elements": "0.90453", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0548", "scoring_system": "epss", "scoring_elements": "0.90454", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0734" }, { "reference_url": "https://curl.se/docs/CVE-2010-0734.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2010-0734.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=563220", "reference_id": "563220", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=563220" }, { "reference_url": "https://security.gentoo.org/glsa/201203-02", "reference_id": "GLSA-201203-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201203-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0273", "reference_id": "RHSA-2010:0273", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0273" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0329", "reference_id": "RHSA-2010:0329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0329" }, { "reference_url": "https://usn.ubuntu.com/1158-1/", "reference_id": "USN-1158-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1158-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397086?format=api", "purl": "pkg:generic/curl.se/curl@7.20.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2zkw-u7gs-vyhc" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7prf-q325-3ygv" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-fguu-tg7a-bfh9" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jffb-7ku1-v7d2" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxdp-2gqg-z7cx" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u361-3r1v-2feu" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-whwa-u32u-6bfn" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.20.0" } ], "aliases": [ "CVE-2010-0734" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fg4t-xewt-83dh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9071?format=api", "vulnerability_id": "VCID-fvt9-f948-q3cy", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22876.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22876.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22876", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30005", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30004", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30021", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.29808", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22876" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8284" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8285" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8286" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22876" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22890" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/1101882", "reference_id": "1101882", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://hackerone.com/reports/1101882" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941964", "reference_id": "1941964", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941964" }, { "reference_url": "https://security.gentoo.org/glsa/202105-36", "reference_id": "202105-36", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://security.gentoo.org/glsa/202105-36" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP/", "reference_id": "2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZC5BMIOKLBQJSFCHEDN2G2C2SH274BP/" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986269", "reference_id": "986269", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986269" }, { "reference_url": "https://security.archlinux.org/AVG-1753", "reference_id": "AVG-1753", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1753" }, { "reference_url": "https://security.archlinux.org/AVG-1754", "reference_id": "AVG-1754", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1754" }, { "reference_url": "https://security.archlinux.org/AVG-1755", "reference_id": "AVG-1755", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1755" }, { "reference_url": "https://security.archlinux.org/AVG-1756", "reference_id": "AVG-1756", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1756" }, { "reference_url": "https://security.archlinux.org/AVG-1757", "reference_id": "AVG-1757", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1757" }, { "reference_url": "https://security.archlinux.org/AVG-1758", "reference_id": "AVG-1758", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1758" }, { "reference_url": "https://www.oracle.com//security-alerts/cpujul2021.html", "reference_id": "cpujul2021.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://www.oracle.com//security-alerts/cpujul2021.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22876", "reference_id": "CVE-2021-22876", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22876" }, { "reference_url": "https://curl.se/docs/CVE-2021-22876.html", "reference_id": "CVE-2021-22876.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://curl.se/docs/CVE-2021-22876.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC/", "reference_id": "ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITVWPVGLFISU5BJC2BXBRYSDXTXE2YGC/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ/", "reference_id": "KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQUIOYX2KUU6FIUZVB5WWZ6JHSSYSQWJ/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/05/msg00019.html", "reference_id": "msg00019.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/05/msg00019.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210521-0007/", "reference_id": "ntap-20210521-0007", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210521-0007/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2471", "reference_id": "RHSA-2021:2471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2472", "reference_id": "RHSA-2021:2472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4511", "reference_id": "RHSA-2021:4511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1354", "reference_id": "RHSA-2022:1354", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1354" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf", "reference_id": "ssa-389290.pdf", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T14:54:20Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf" }, { "reference_url": "https://usn.ubuntu.com/4898-1/", "reference_id": "USN-4898-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4898-1/" }, { "reference_url": "https://usn.ubuntu.com/4903-1/", "reference_id": "USN-4903-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4903-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397171?format=api", "purl": "pkg:generic/curl.se/curl@7.76.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1gxw-nhcc-9fas" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-85pa-r1x5-7bb9" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-a87y-rekx-bfc9" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fu9h-ndbg-ebe1" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-rfx7-krcf-dyhg" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xxa9-79q7-cfdf" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.76.0" } ], "aliases": [ "CVE-2021-22876" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fvt9-f948-q3cy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15297?format=api", "vulnerability_id": "VCID-gd1h-nu7e-k3gv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27535.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27535.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27535", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11217", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11241", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11274", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.11284", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27535" }, { "reference_url": "https://curl.se/docs/CVE-2023-27535.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2023-27535.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27535" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/" }, { "reference_url": "https://hackerone.com/reports/1892780", "reference_id": "1892780", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-03T18:24:11Z/" } ], "url": "https://hackerone.com/reports/1892780" }, { "reference_url": "https://security.gentoo.org/glsa/202310-12", "reference_id": "202310-12", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-03T18:24:11Z/" } ], "url": "https://security.gentoo.org/glsa/202310-12" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2179073", "reference_id": "2179073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2179073" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/", "reference_id": "36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-03T18:24:11Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27535", "reference_id": "CVE-2023-27535", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-27535" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html", "reference_id": "msg00025.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-03T18:24:11Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230420-0010/", "reference_id": "ntap-20230420-0010", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-03T18:24:11Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230420-0010/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2650", "reference_id": "RHSA-2023:2650", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2650" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3106", "reference_id": "RHSA-2023:3106", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3106" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0428", "reference_id": "RHSA-2024:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0428" }, { "reference_url": "https://usn.ubuntu.com/5964-1/", "reference_id": "USN-5964-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5964-1/" }, { "reference_url": "https://usn.ubuntu.com/5964-2/", "reference_id": "USN-5964-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5964-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397188?format=api", "purl": "pkg:generic/curl.se/curl@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-ahzz-h3g1-wycq" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-f4c9-1he1-9fb5" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-qzaj-5374-q3ct" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0" } ], "aliases": [ "CVE-2023-27535" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gd1h-nu7e-k3gv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/115662?format=api", "vulnerability_id": "VCID-gd5m-jmtk-nug1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3148.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3148.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3148", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01422", "scoring_system": "epss", "scoring_elements": "0.81023", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01422", "scoring_system": "epss", "scoring_elements": "0.81083", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01422", "scoring_system": "epss", "scoring_elements": "0.81092", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01422", "scoring_system": "epss", "scoring_elements": "0.81082", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3148" }, { "reference_url": "https://curl.se/docs/CVE-2015-3148.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2015-3148.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1213351", "reference_id": "1213351", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1213351" }, { "reference_url": "https://security.gentoo.org/glsa/201509-02", "reference_id": "GLSA-201509-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201509-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:1254", "reference_id": "RHSA-2015:1254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:1254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:2159", "reference_id": "RHSA-2015:2159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:2159" }, { "reference_url": "https://usn.ubuntu.com/2591-1/", "reference_id": "USN-2591-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2591-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397119?format=api", "purl": "pkg:generic/curl.se/curl@7.42.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-79bx-ksvr-t3c7" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t2d3-b9qt-mfea" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0" } ], "aliases": [ "CVE-2015-3148" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gd5m-jmtk-nug1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1566?format=api", "vulnerability_id": "VCID-hqph-96tk-vkeq", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5419.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5419.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5419", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01912", "scoring_system": "epss", "scoring_elements": "0.83758", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01912", "scoring_system": "epss", "scoring_elements": "0.83691", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01912", "scoring_system": "epss", "scoring_elements": "0.83755", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01912", "scoring_system": "epss", "scoring_elements": "0.83749", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5419" }, { "reference_url": "https://curl.se/docs/CVE-2016-5419.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-5419.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362183", "reference_id": "1362183", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:2575", "reference_id": "RHSA-2016:2575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:2575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:2957", "reference_id": "RHSA-2016:2957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:2957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3048-1/", "reference_id": "USN-3048-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3048-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397131?format=api", "purl": "pkg:generic/curl.se/curl@7.50.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1" } ], "aliases": [ "CVE-2016-5419" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hqph-96tk-vkeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2144?format=api", "vulnerability_id": "VCID-hu4v-qgtd-e7g7", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9586.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9586.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9586", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01009", "scoring_system": "epss", "scoring_elements": "0.7758", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01009", "scoring_system": "epss", "scoring_elements": "0.77511", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01009", "scoring_system": "epss", "scoring_elements": "0.77585", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01009", "scoring_system": "epss", "scoring_elements": "0.77594", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9586" }, { "reference_url": "https://curl.se/docs/CVE-2016-9586.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-9586.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9586", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9586" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037515", "reference_id": "1037515", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "http://www.securitytracker.com/id/1037515" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1406712", "reference_id": "1406712", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1406712" }, { "reference_url": "https://security.gentoo.org/glsa/201701-47", "reference_id": "201701-47", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://security.gentoo.org/glsa/201701-47" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848958", "reference_id": "848958", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848958" }, { "reference_url": "http://www.securityfocus.com/bid/95019", "reference_id": "95019", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "http://www.securityfocus.com/bid/95019" }, { "reference_url": "https://curl.haxx.se/docs/adv_20161221A.html", "reference_id": "adv_20161221A.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://curl.haxx.se/docs/adv_20161221A.html" }, { "reference_url": "https://security.archlinux.org/ASA-201612-22", "reference_id": "ASA-201612-22", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201612-22" }, { "reference_url": "https://security.archlinux.org/ASA-201701-10", "reference_id": "ASA-201701-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201701-10" }, { "reference_url": "https://security.archlinux.org/ASA-201701-11", "reference_id": "ASA-201701-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201701-11" }, { "reference_url": "https://security.archlinux.org/ASA-201701-7", "reference_id": "ASA-201701-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201701-7" }, { "reference_url": "https://security.archlinux.org/ASA-201701-8", "reference_id": "ASA-201701-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201701-8" }, { "reference_url": "https://security.archlinux.org/ASA-201701-9", "reference_id": "ASA-201701-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201701-9" }, { "reference_url": "https://security.archlinux.org/AVG-112", "reference_id": "AVG-112", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-112" }, { "reference_url": "https://security.archlinux.org/AVG-113", "reference_id": "AVG-113", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-113" }, { "reference_url": "https://security.archlinux.org/AVG-114", "reference_id": "AVG-114", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-114" }, { "reference_url": "https://security.archlinux.org/AVG-115", "reference_id": "AVG-115", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-115" }, { "reference_url": "https://security.archlinux.org/AVG-116", "reference_id": "AVG-116", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-116" }, { "reference_url": "https://security.archlinux.org/AVG-117", "reference_id": "AVG-117", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-117" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "reference_id": "cpuoct2018-4428296.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "reference_url": "https://github.com/curl/curl/commit/curl-7_51_0-162-g3ab3c16", "reference_id": "curl-7_51_0-162-g3ab3c16", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://github.com/curl/curl/commit/curl-7_51_0-162-g3ab3c16" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html", "reference_id": "msg00005.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html" }, { "reference_url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9586", "reference_id": "show_bug.cgi?id=CVE-2016-9586", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T21:03:41Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9586" }, { "reference_url": "https://usn.ubuntu.com/3441-1/", "reference_id": "USN-3441-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-1/" }, { "reference_url": "https://usn.ubuntu.com/3441-2/", "reference_id": "USN-3441-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397135?format=api", "purl": "pkg:generic/curl.se/curl@7.52.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-ak65-zm7g-kue5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-h7at-zg9p-2qdg" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-td7w-a3fy-fbad" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.52.0" } ], "aliases": [ "CVE-2016-9586" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hu4v-qgtd-e7g7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15680?format=api", "vulnerability_id": "VCID-j5ba-n9r8-7fcs", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38546.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38546.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38546", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63761", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63763", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63749", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63647", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-38546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38546" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/2148242", "reference_id": "", "reference_type": "", "scores": [], "url": "https://hackerone.com/reports/2148242" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241938", "reference_id": "2241938", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241938" }, { "reference_url": "http://seclists.org/fulldisclosure/2024/Jan/34", "reference_id": "34", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "http://seclists.org/fulldisclosure/2024/Jan/34" }, { "reference_url": "http://seclists.org/fulldisclosure/2024/Jan/37", "reference_id": "37", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "http://seclists.org/fulldisclosure/2024/Jan/37" }, { "reference_url": "http://seclists.org/fulldisclosure/2024/Jan/38", "reference_id": "38", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "http://seclists.org/fulldisclosure/2024/Jan/38" }, { "reference_url": "https://security.archlinux.org/AVG-2845", "reference_id": "AVG-2845", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2845" }, { "reference_url": "https://security.archlinux.org/AVG-2846", "reference_id": "AVG-2846", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2846" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-38546", "reference_id": "CVE-2023-38546", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-38546" }, { "reference_url": "https://curl.se/docs/CVE-2023-38546.html", "reference_id": "CVE-2023-38546.html", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "https://curl.se/docs/CVE-2023-38546.html" }, { "reference_url": "https://support.apple.com/kb/HT214036", "reference_id": "HT214036", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "https://support.apple.com/kb/HT214036" }, { "reference_url": "https://support.apple.com/kb/HT214057", "reference_id": "HT214057", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "https://support.apple.com/kb/HT214057" }, { "reference_url": "https://support.apple.com/kb/HT214058", "reference_id": "HT214058", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "https://support.apple.com/kb/HT214058" }, { "reference_url": "https://support.apple.com/kb/HT214063", "reference_id": "HT214063", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "https://support.apple.com/kb/HT214063" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/", "reference_id": "OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGMXNRNSJ4ETDK6FRNU3J7SABXPWCHSQ/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5700", "reference_id": "RHSA-2023:5700", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5700" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5763", "reference_id": "RHSA-2023:5763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6292", "reference_id": "RHSA-2023:6292", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6745", "reference_id": "RHSA-2023:6745", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6745" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7540", "reference_id": "RHSA-2023:7540", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7540" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7625", "reference_id": "RHSA-2023:7625", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7625" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7626", "reference_id": "RHSA-2023:7626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1601", "reference_id": "RHSA-2024:1601", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2092", "reference_id": "RHSA-2024:2092", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2092" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2093", "reference_id": "RHSA-2024:2093", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2101", "reference_id": "RHSA-2024:2101", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2101" }, { "reference_url": "https://usn.ubuntu.com/6429-1/", "reference_id": "USN-6429-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6429-1/" }, { "reference_url": "https://usn.ubuntu.com/6429-2/", "reference_id": "USN-6429-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6429-2/" }, { "reference_url": "https://usn.ubuntu.com/6429-3/", "reference_id": "USN-6429-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6429-3/" }, { "reference_url": "https://forum.vmssoftware.com/viewtopic.php?f=8&t=8868", "reference_id": "viewtopic.php?f=8&t=8868", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T15:01:53Z/" } ], "url": "https://forum.vmssoftware.com/viewtopic.php?f=8&t=8868" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397196?format=api", "purl": "pkg:generic/curl.se/curl@8.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-ahzz-h3g1-wycq" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.4.0" } ], "aliases": [ "CVE-2023-38546" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j5ba-n9r8-7fcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4989?format=api", "vulnerability_id": "VCID-j7zd-wmfq-rfgb", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16842.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16842.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16842", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37118", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37145", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.36941", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.3713", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16842" }, { "reference_url": "https://curl.se/docs/CVE-2018-16842.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2018-16842.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1042014", "reference_id": "1042014", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "http://www.securitytracker.com/id/1042014" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644124", "reference_id": "1644124", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644124" }, { "reference_url": "https://security.gentoo.org/glsa/201903-03", "reference_id": "201903-03", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://security.gentoo.org/glsa/201903-03" }, { "reference_url": "https://usn.ubuntu.com/3805-1/", "reference_id": "3805-1", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://usn.ubuntu.com/3805-1/" }, { "reference_url": "https://usn.ubuntu.com/3805-2/", "reference_id": "3805-2", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://usn.ubuntu.com/3805-2/" }, { "reference_url": "https://security.archlinux.org/ASA-201811-4", "reference_id": "ASA-201811-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-4" }, { "reference_url": "https://security.archlinux.org/AVG-795", "reference_id": "AVG-795", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-795" }, { "reference_url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html", "reference_id": "cpuoct2019-5072832.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html" }, { "reference_url": "https://curl.haxx.se/docs/CVE-2018-16842.html", "reference_id": "CVE-2018-16842.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://curl.haxx.se/docs/CVE-2018-16842.html" }, { "reference_url": "https://github.com/curl/curl/commit/d530e92f59ae9bb2d47066c3c460b25d2ffeb211", "reference_id": "d530e92f59ae9bb2d47066c3c460b25d2ffeb211", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://github.com/curl/curl/commit/d530e92f59ae9bb2d47066c3c460b25d2ffeb211" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4331", "reference_id": "dsa-4331", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://www.debian.org/security/2018/dsa-4331" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html", "reference_id": "msg00005.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1543", "reference_id": "RHSA-2019:1543", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1543" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2181", "reference_id": "RHSA-2019:2181", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2019:2181" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16842", "reference_id": "show_bug.cgi?id=CVE-2018-16842", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-15T20:56:25Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16842" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397151?format=api", "purl": "pkg:generic/curl.se/curl@7.62.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fu9h-ndbg-ebe1" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rscd-vvw6-rbe7" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wcvg-fext-kfau" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.62.0" } ], "aliases": [ "CVE-2018-16842" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j7zd-wmfq-rfgb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/181743?format=api", "vulnerability_id": "VCID-ja81-vgz8-bkcf", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3153.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3153.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3153", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08372", "scoring_system": "epss", "scoring_elements": "0.92492", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.08372", "scoring_system": "epss", "scoring_elements": "0.92517", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.08372", "scoring_system": "epss", "scoring_elements": "0.9252", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3153" }, { "reference_url": "https://curl.se/docs/CVE-2015-3153.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2015-3153.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3153", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3153" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1217341", "reference_id": "1217341", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1217341" }, { "reference_url": "https://usn.ubuntu.com/2591-1/", "reference_id": "USN-2591-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2591-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397120?format=api", "purl": "pkg:generic/curl.se/curl@7.42.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-79bx-ksvr-t3c7" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t2d3-b9qt-mfea" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.1" } ], "aliases": [ "CVE-2015-3153" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ja81-vgz8-bkcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/178616?format=api", "vulnerability_id": "VCID-jffb-7ku1-v7d2", "summary": "Multiple vulnerabilities have been found in cURL, allowing\n attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1944.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1944.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1944", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02482", "scoring_system": "epss", "scoring_elements": "0.85617", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02482", "scoring_system": "epss", "scoring_elements": "0.85669", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02482", "scoring_system": "epss", "scoring_elements": "0.85679", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.02482", "scoring_system": "epss", "scoring_elements": "0.85671", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1944" }, { "reference_url": "https://curl.se/docs/CVE-2013-1944.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2013-1944.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1944" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705274", "reference_id": "705274", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=705274" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=950577", "reference_id": "950577", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=950577" }, { "reference_url": "https://security.gentoo.org/glsa/201401-14", "reference_id": "GLSA-201401-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201401-14" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:0771", "reference_id": "RHSA-2013:0771", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:0771" }, { "reference_url": "https://usn.ubuntu.com/1801-1/", "reference_id": "USN-1801-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1801-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397106?format=api", "purl": "pkg:generic/curl.se/curl@7.30.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-3r3e-8zwt-4uhy" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7prf-q325-3ygv" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9h7c-smy1-ckcc" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-fguu-tg7a-bfh9" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-spxq-acja-cyce" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.30.0" } ], "aliases": [ "CVE-2013-1944" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jffb-7ku1-v7d2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/112074?format=api", "vulnerability_id": "VCID-jjkp-u5bk-cfge", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3613.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3613.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3613", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0182", "scoring_system": "epss", "scoring_elements": "0.83273", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0182", "scoring_system": "epss", "scoring_elements": "0.83334", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0182", "scoring_system": "epss", "scoring_elements": "0.83343", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0182", "scoring_system": "epss", "scoring_elements": "0.83339", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3613" }, { "reference_url": "https://curl.se/docs/CVE-2014-3613.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2014-3613.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3613" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1136154", "reference_id": "1136154", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1136154" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:1254", "reference_id": "RHSA-2015:1254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:1254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:2159", "reference_id": "RHSA-2015:2159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:2159" }, { "reference_url": "https://usn.ubuntu.com/2346-1/", "reference_id": "USN-2346-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2346-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397115?format=api", "purl": "pkg:generic/curl.se/curl@7.38.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-8qcc-cgax-w7f2" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-v3pu-2sy3-mkfy" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w52f-grp3-bfcs" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.38.0" } ], "aliases": [ "CVE-2014-3613" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jjkp-u5bk-cfge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/176928?format=api", "vulnerability_id": "VCID-jq62-dsd5-9be6", "summary": "Multiple vulnerabilities have been found in cURL, the worst of\n which could allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0755.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0755.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-0755", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57611", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57727", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57743", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57734", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-0755" }, { "reference_url": "https://curl.se/docs/CVE-2016-0755.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-0755.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0755", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0755" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1302263", "reference_id": "1302263", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1302263" }, { "reference_url": "https://usn.ubuntu.com/2882-1/", "reference_id": "USN-2882-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2882-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397125?format=api", "purl": "pkg:generic/curl.se/curl@7.47.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.47.0" } ], "aliases": [ "CVE-2016-0755" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jq62-dsd5-9be6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15319?format=api", "vulnerability_id": "VCID-kz8k-da4w-ufak", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28320.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28320.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-28320", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00641", "scoring_system": "epss", "scoring_elements": "0.7109", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00641", "scoring_system": "epss", "scoring_elements": "0.7118", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0087", "scoring_system": "epss", "scoring_elements": "0.75701", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0087", "scoring_system": "epss", "scoring_elements": "0.75706", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-28320" }, { "reference_url": "https://curl.se/docs/CVE-2023-28320.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2023-28320.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28320" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239", "reference_id": "1036239", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239" }, { "reference_url": "https://hackerone.com/reports/1929597", "reference_id": "1929597", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "https://hackerone.com/reports/1929597" }, { "reference_url": "https://security.gentoo.org/glsa/202310-12", "reference_id": "202310-12", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "https://security.gentoo.org/glsa/202310-12" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196783", "reference_id": "2196783", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196783" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/47", "reference_id": "47", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/47" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/48", "reference_id": "48", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/48" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/52", "reference_id": "52", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/52" }, { "reference_url": "https://support.apple.com/kb/HT213843", "reference_id": "HT213843", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "https://support.apple.com/kb/HT213843" }, { "reference_url": "https://support.apple.com/kb/HT213844", "reference_id": "HT213844", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "https://support.apple.com/kb/HT213844" }, { "reference_url": "https://support.apple.com/kb/HT213845", "reference_id": "HT213845", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "https://support.apple.com/kb/HT213845" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230609-0009/", "reference_id": "ntap-20230609-0009", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-15T15:57:47Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230609-0009/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397190?format=api", "purl": "pkg:generic/curl.se/curl@8.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-ahzz-h3g1-wycq" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-f4c9-1he1-9fb5" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0" } ], "aliases": [ "CVE-2023-28320" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kz8k-da4w-ufak" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9079?format=api", "vulnerability_id": "VCID-m2q3-wbn9-9bce", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22898.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22898.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22898", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.26168", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.26154", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25953", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-22898" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/1176461", "reference_id": "1176461", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://hackerone.com/reports/1176461" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1964887", "reference_id": "1964887", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1964887" }, { "reference_url": "https://github.com/curl/curl/commit/39ce47f219b09c380b81f89fe54ac586c8db6bde", "reference_id": "39ce47f219b09c380b81f89fe54ac586c8db6bde", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://github.com/curl/curl/commit/39ce47f219b09c380b81f89fe54ac586c8db6bde" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2021/07/21/4", "reference_id": "4", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2021/07/21/4" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989228", "reference_id": "989228", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989228" }, { "reference_url": "https://security.archlinux.org/ASA-202106-4", "reference_id": "ASA-202106-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-4" }, { "reference_url": "https://security.archlinux.org/ASA-202106-5", "reference_id": "ASA-202106-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-5" }, { "reference_url": "https://security.archlinux.org/ASA-202106-6", "reference_id": "ASA-202106-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-6" }, { "reference_url": "https://security.archlinux.org/ASA-202106-7", "reference_id": "ASA-202106-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-7" }, { "reference_url": "https://security.archlinux.org/ASA-202106-8", "reference_id": "ASA-202106-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-8" }, { "reference_url": "https://security.archlinux.org/ASA-202106-9", "reference_id": "ASA-202106-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-9" }, { "reference_url": "https://security.archlinux.org/AVG-1995", "reference_id": "AVG-1995", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1995" }, { "reference_url": "https://security.archlinux.org/AVG-1996", "reference_id": "AVG-1996", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1996" }, { "reference_url": "https://security.archlinux.org/AVG-1997", "reference_id": "AVG-1997", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1997" }, { "reference_url": "https://security.archlinux.org/AVG-1998", "reference_id": "AVG-1998", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1998" }, { "reference_url": "https://security.archlinux.org/AVG-1999", "reference_id": "AVG-1999", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1999" }, { "reference_url": "https://security.archlinux.org/AVG-2000", "reference_id": "AVG-2000", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2000" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2022.html", "reference_id": "cpuapr2022.html", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2022.html", "reference_id": "cpujan2022.html", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "reference_url": "https://www.oracle.com//security-alerts/cpujul2021.html", "reference_id": "cpujul2021.html", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://www.oracle.com//security-alerts/cpujul2021.html" }, { "reference_url": "https://curl.se/docs/CVE-2021-22898.html", "reference_id": "CVE-2021-22898.html", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://curl.se/docs/CVE-2021-22898.html" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5197", "reference_id": "dsa-5197", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5197" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/", "reference_id": "FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q/", "reference_id": "POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/POOC3UV7V6L4CJ5KA2PTWTNUV5Y72T3Q/" }, { "reference_url": "https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E", "reference_id": "rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4511", "reference_id": "RHSA-2021:4511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4511" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf", "reference_id": "ssa-389290.pdf", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-28T18:31:55Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf" }, { "reference_url": "https://usn.ubuntu.com/5021-1/", "reference_id": "USN-5021-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5021-1/" }, { "reference_url": "https://usn.ubuntu.com/5021-2/", "reference_id": "USN-5021-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5021-2/" }, { "reference_url": "https://usn.ubuntu.com/5894-1/", "reference_id": "USN-5894-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5894-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397173?format=api", "purl": "pkg:generic/curl.se/curl@7.77.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1gxw-nhcc-9fas" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2hty-64mk-rba6" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-85pa-r1x5-7bb9" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-g888-a9ew-ekf7" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q48h-p22q-nkae" }, { "vulnerability": "VCID-rfx7-krcf-dyhg" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tr9z-2dn3-qycw" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xhet-h2we-v7dr" }, { "vulnerability": "VCID-xxa9-79q7-cfdf" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.77.0" } ], "aliases": [ "CVE-2021-22898" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m2q3-wbn9-9bce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30110?format=api", "vulnerability_id": "VCID-mazz-6byr-mue9", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7168.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7168.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-7168", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28038", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.27812", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28011", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29667", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-7168" }, { "reference_url": "https://curl.se/docs/CVE-2026-7168.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2026-7168.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7168", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7168" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/3697719", "reference_id": "", "reference_type": "", "scores": [], "url": "https://hackerone.com/reports/3697719" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2476979", "reference_id": "2476979", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2476979" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19106", "reference_id": "RHSA-2026:19106", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19106" }, { "reference_url": "https://usn.ubuntu.com/8227-1/", "reference_id": "USN-8227-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8227-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397218?format=api", "purl": "pkg:generic/curl.se/curl@8.20.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.20.0" } ], "aliases": [ "CVE-2026-7168" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mazz-6byr-mue9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1567?format=api", "vulnerability_id": "VCID-napu-8bt4-83d7", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5420.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5420.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5420", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01071", "scoring_system": "epss", "scoring_elements": "0.78235", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01071", "scoring_system": "epss", "scoring_elements": "0.78153", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01071", "scoring_system": "epss", "scoring_elements": "0.7823", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01071", "scoring_system": "epss", "scoring_elements": "0.7822", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5420" }, { "reference_url": "https://curl.se/docs/CVE-2016-5420.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-5420.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:P/I:P/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362190", "reference_id": "1362190", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362190" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:2575", "reference_id": "RHSA-2016:2575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:2575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:2957", "reference_id": "RHSA-2016:2957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:2957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3048-1/", "reference_id": "USN-3048-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3048-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397131?format=api", "purl": "pkg:generic/curl.se/curl@7.50.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.50.1" } ], "aliases": [ "CVE-2016-5420" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-napu-8bt4-83d7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2278?format=api", "vulnerability_id": "VCID-p6eq-vzz3-hufv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000100.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000100.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-1000100", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.70897", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.70987", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.70997", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00635", "scoring_system": "epss", "scoring_elements": "0.71", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-1000100" }, { "reference_url": "https://curl.se/docs/CVE-2017-1000100.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2017-1000100.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:P/I:N/A:N" }, { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/100286", "reference_id": "100286", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:34:47Z/" } ], "url": "http://www.securityfocus.com/bid/100286" }, { "reference_url": "http://www.securitytracker.com/id/1039118", "reference_id": "1039118", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:34:47Z/" } ], "url": "http://www.securitytracker.com/id/1039118" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1478310", "reference_id": "1478310", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1478310" }, { "reference_url": "https://security.gentoo.org/glsa/201709-14", "reference_id": "201709-14", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:34:47Z/" } ], "url": "https://security.gentoo.org/glsa/201709-14" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=871555", "reference_id": "871555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=871555" }, { "reference_url": "https://curl.haxx.se/docs/adv_20170809B.html", "reference_id": "adv_20170809B.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:34:47Z/" } ], "url": "https://curl.haxx.se/docs/adv_20170809B.html" }, { "reference_url": "https://security.archlinux.org/ASA-201708-16", "reference_id": "ASA-201708-16", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-16" }, { "reference_url": "https://security.archlinux.org/ASA-201710-3", "reference_id": "ASA-201710-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-3" }, { "reference_url": "https://security.archlinux.org/ASA-201710-4", "reference_id": "ASA-201710-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-4" }, { "reference_url": "https://security.archlinux.org/ASA-201710-5", "reference_id": "ASA-201710-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-5" }, { "reference_url": "https://security.archlinux.org/ASA-201710-6", "reference_id": "ASA-201710-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-6" }, { "reference_url": "https://security.archlinux.org/ASA-201710-7", "reference_id": "ASA-201710-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-7" }, { "reference_url": "https://security.archlinux.org/AVG-370", "reference_id": "AVG-370", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-370" }, { "reference_url": "https://security.archlinux.org/AVG-371", "reference_id": "AVG-371", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-371" }, { "reference_url": "https://security.archlinux.org/AVG-386", "reference_id": "AVG-386", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-386" }, { "reference_url": "https://security.archlinux.org/AVG-387", "reference_id": "AVG-387", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-387" }, { "reference_url": "https://security.archlinux.org/AVG-388", "reference_id": "AVG-388", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-388" }, { "reference_url": "https://security.archlinux.org/AVG-389", "reference_id": "AVG-389", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-389" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3992", "reference_id": "dsa-3992", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:34:47Z/" } ], "url": "http://www.debian.org/security/2017/dsa-3992" }, { "reference_url": "https://support.apple.com/HT208221", "reference_id": "HT208221", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:34:47Z/" } ], "url": "https://support.apple.com/HT208221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:34:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3441-1/", "reference_id": "USN-3441-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-1/" }, { "reference_url": "https://usn.ubuntu.com/3441-2/", "reference_id": "USN-3441-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397141?format=api", "purl": "pkg:generic/curl.se/curl@7.55.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fqju-fts8-jkgw" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gb5d-czbu-4yge" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.55.0" } ], "aliases": [ "CVE-2017-1000100" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p6eq-vzz3-hufv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1959?format=api", "vulnerability_id": "VCID-pmsg-uhqk-7kcs", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8617.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24437", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24248", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24443", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24454", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8617" }, { "reference_url": "https://curl.se/docs/CVE-2016-8617.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8617.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037192", "reference_id": "1037192", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "http://www.securitytracker.com/id/1037192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388377", "reference_id": "1388377", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388377" }, { "reference_url": "https://security.gentoo.org/glsa/201701-47", "reference_id": "201701-47", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://security.gentoo.org/glsa/201701-47" }, { "reference_url": "http://www.securityfocus.com/bid/94097", "reference_id": "94097", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "http://www.securityfocus.com/bid/94097" }, { "reference_url": "https://curl.haxx.se/docs/adv_20161102C.html", "reference_id": "adv_20161102C.html", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://curl.haxx.se/docs/adv_20161102C.html" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "reference_id": "cpuoct2018-4428296.html", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "reference_url": "https://curl.haxx.se/CVE-2016-8617.patch", "reference_id": "CVE-2016-8617.patch", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://curl.haxx.se/CVE-2016-8617.patch" }, { "reference_url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8617", "reference_id": "show_bug.cgi?id=CVE-2016-8617", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8617" }, { "reference_url": "https://www.tenable.com/security/tns-2016-21", "reference_id": "tns-2016-21", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:31:30Z/" } ], "url": "https://www.tenable.com/security/tns-2016-21" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8617" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pmsg-uhqk-7kcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11770?format=api", "vulnerability_id": "VCID-pmzj-mxwq-pugz", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27776.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27776.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27776", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00682", "scoring_system": "epss", "scoring_elements": "0.72105", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00682", "scoring_system": "epss", "scoring_elements": "0.72196", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00682", "scoring_system": "epss", "scoring_elements": "0.72201", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00682", "scoring_system": "epss", "scoring_elements": "0.72188", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27776" }, { "reference_url": "https://curl.se/docs/CVE-2022-27776.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2022-27776.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010252", "reference_id": "1010252", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010252" }, { "reference_url": "https://hackerone.com/reports/1547048", "reference_id": "1547048", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/" } ], "url": "https://hackerone.com/reports/1547048" }, { "reference_url": "https://security.gentoo.org/glsa/202212-01", "reference_id": "202212-01", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/" } ], "url": "https://security.gentoo.org/glsa/202212-01" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2078408", "reference_id": "2078408", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2078408" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP/", "reference_id": "7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7N5ZBWLNNPZKFK7Q4KEHGCJ2YELQEUJP/" }, { "reference_url": "https://security.archlinux.org/AVG-2685", "reference_id": "AVG-2685", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2685" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B/", "reference_id": "DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKKOQXPYLMBSEVDHFS32BPBR3ZQJKY5B/" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5197", "reference_id": "dsa-5197", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5197" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220609-0008/", "reference_id": "ntap-20220609-0008", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T15:23:04Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20220609-0008/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5245", "reference_id": "RHSA-2022:5245", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5245" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5313", "reference_id": "RHSA-2022:5313", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5313" }, { "reference_url": "https://usn.ubuntu.com/5397-1/", "reference_id": "USN-5397-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5397-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397180?format=api", "purl": "pkg:generic/curl.se/curl@7.83.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1gxw-nhcc-9fas" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2hty-64mk-rba6" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-2zmz-vfh1-zbcm" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-85pa-r1x5-7bb9" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-g888-a9ew-ekf7" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nsdu-5cw5-z3ak" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q48h-p22q-nkae" }, { "vulnerability": "VCID-qzaj-5374-q3ct" }, { "vulnerability": "VCID-rmb3-vgdv-abey" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-ru47-h3fb-qugd" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tr9z-2dn3-qycw" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xhet-h2we-v7dr" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0" } ], "aliases": [ "CVE-2022-27776" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pmzj-mxwq-pugz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1960?format=api", "vulnerability_id": "VCID-qkn9-227f-mfec", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8618.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8618.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01811", "scoring_system": "epss", "scoring_elements": "0.83304", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01811", "scoring_system": "epss", "scoring_elements": "0.83239", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01811", "scoring_system": "epss", "scoring_elements": "0.833", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01811", "scoring_system": "epss", "scoring_elements": "0.83308", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8618" }, { "reference_url": "https://curl.se/docs/CVE-2016-8618.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8618.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388378", "reference_id": "1388378", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388378" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8618" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qkn9-227f-mfec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/26691?format=api", "vulnerability_id": "VCID-rxkp-fpvn-1fge", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1965.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1965.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-1965", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22358", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22175", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22366", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2238", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-1965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1965" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446448", "reference_id": "2446448", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2446448" }, { "reference_url": "https://curl.se/docs/CVE-2026-1965.html", "reference_id": "CVE-2026-1965.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-11T14:31:56Z/" } ], "url": "https://curl.se/docs/CVE-2026-1965.html" }, { "reference_url": "https://curl.se/docs/CVE-2026-1965.json", "reference_id": "CVE-2026-1965.json", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-11T14:31:56Z/" } ], "url": "https://curl.se/docs/CVE-2026-1965.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6893", "reference_id": "RHSA-2026:6893", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6893" }, { "reference_url": "https://usn.ubuntu.com/8084-1/", "reference_id": "USN-8084-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8084-1/" }, { "reference_url": "https://usn.ubuntu.com/8099-1/", "reference_id": "USN-8099-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8099-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397217?format=api", "purl": "pkg:generic/curl.se/curl@8.19.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-5ggd-h3ve-z3hn" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-mazz-6byr-mue9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.19.0" } ], "aliases": [ "CVE-2026-1965" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rxkp-fpvn-1fge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15295?format=api", "vulnerability_id": "VCID-shx4-hjxr-ufee", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27533.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27533.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27533", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.3514", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35321", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35342", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35318", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-27533" }, { "reference_url": "https://curl.se/docs/CVE-2023-27533.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2023-27533.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27533" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://hackerone.com/reports/1891474", "reference_id": "1891474", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/" } ], "url": "https://hackerone.com/reports/1891474" }, { "reference_url": "https://security.gentoo.org/glsa/202310-12", "reference_id": "202310-12", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/" } ], "url": "https://security.gentoo.org/glsa/202310-12" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2179062", "reference_id": "2179062", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2179062" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/", "reference_id": "36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/36NBD5YLJXXEDZLDGNFCERWRYJQ6LAQW/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html", "reference_id": "msg00025.html", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00025.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230420-0011/", "reference_id": "ntap-20230420-0011", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T20:09:15Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230420-0011/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3354", "reference_id": "RHSA-2023:3354", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3354" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3355", "reference_id": "RHSA-2023:3355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6679", "reference_id": "RHSA-2023:6679", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6679" }, { "reference_url": "https://usn.ubuntu.com/5964-1/", "reference_id": "USN-5964-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5964-1/" }, { "reference_url": "https://usn.ubuntu.com/5964-2/", "reference_id": "USN-5964-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5964-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397188?format=api", "purl": "pkg:generic/curl.se/curl@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-ahzz-h3g1-wycq" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-f4c9-1he1-9fb5" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-qzaj-5374-q3ct" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.0.0" } ], "aliases": [ "CVE-2023-27533" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-shx4-hjxr-ufee" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/22412?format=api", "vulnerability_id": "VCID-skay-2qbt-v3h5", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0725.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0725.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0725", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.006", "scoring_system": "epss", "scoring_elements": "0.70024", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.006", "scoring_system": "epss", "scoring_elements": "0.70037", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.006", "scoring_system": "epss", "scoring_elements": "0.70039", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.006", "scoring_system": "epss", "scoring_elements": "0.69933", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-0725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0725", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0725" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2343899", "reference_id": "2343899", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2343899" }, { "reference_url": "https://hackerone.com/reports/2956023", "reference_id": "2956023", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/" } ], "url": "https://hackerone.com/reports/2956023" }, { "reference_url": "https://curl.se/docs/CVE-2025-0725.html", "reference_id": "CVE-2025-0725.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/" } ], "url": "https://curl.se/docs/CVE-2025-0725.html" }, { "reference_url": "https://curl.se/docs/CVE-2025-0725.json", "reference_id": "CVE-2025-0725.json", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-05T14:33:50Z/" } ], "url": "https://curl.se/docs/CVE-2025-0725.json" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397208?format=api", "purl": "pkg:generic/curl.se/curl@8.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3rs2-61e2-9fh1" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-ahzz-h3g1-wycq" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eaxz-yqr2-cbc9" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-jb2s-stmv-pfbc" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-ku2t-2mh1-fbgx" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-u8re-brxj-rbb6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.12.0" } ], "aliases": [ "CVE-2025-0725" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-skay-2qbt-v3h5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1967?format=api", "vulnerability_id": "VCID-su9s-6zsz-fffn", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8625.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8625", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01671", "scoring_system": "epss", "scoring_elements": "0.82531", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01671", "scoring_system": "epss", "scoring_elements": "0.82597", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01671", "scoring_system": "epss", "scoring_elements": "0.82602", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01671", "scoring_system": "epss", "scoring_elements": "0.82593", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8625" }, { "reference_url": "https://curl.se/docs/CVE-2016-8625.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8625.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388392", "reference_id": "1388392", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388392" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8625" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-su9s-6zsz-fffn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15321?format=api", "vulnerability_id": "VCID-swwv-dqka-37bt", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28322.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28322.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-28322", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00631", "scoring_system": "epss", "scoring_elements": "0.70785", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00631", "scoring_system": "epss", "scoring_elements": "0.70876", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72806", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72809", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-28322" }, { "reference_url": "https://curl.se/docs/CVE-2023-28322.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2023-28322.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28322" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239", "reference_id": "1036239", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036239" }, { "reference_url": "https://hackerone.com/reports/1954658", "reference_id": "1954658", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://hackerone.com/reports/1954658" }, { "reference_url": "https://security.gentoo.org/glsa/202310-12", "reference_id": "202310-12", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://security.gentoo.org/glsa/202310-12" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196793", "reference_id": "2196793", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196793" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/47", "reference_id": "47", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/47" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/48", "reference_id": "48", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/48" }, { "reference_url": "http://seclists.org/fulldisclosure/2023/Jul/52", "reference_id": "52", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "http://seclists.org/fulldisclosure/2023/Jul/52" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/", "reference_id": "F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/" }, { "reference_url": "https://support.apple.com/kb/HT213843", "reference_id": "HT213843", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://support.apple.com/kb/HT213843" }, { "reference_url": "https://support.apple.com/kb/HT213844", "reference_id": "HT213844", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://support.apple.com/kb/HT213844" }, { "reference_url": "https://support.apple.com/kb/HT213845", "reference_id": "HT213845", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://support.apple.com/kb/HT213845" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html", "reference_id": "msg00015.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230609-0009/", "reference_id": "ntap-20230609-0009", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230609-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4354", "reference_id": "RHSA-2023:4354", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4354" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4628", "reference_id": "RHSA-2023:4628", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4628" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:4629", "reference_id": "RHSA-2023:4629", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:4629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5598", "reference_id": "RHSA-2023:5598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0428", "reference_id": "RHSA-2024:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0585", "reference_id": "RHSA-2024:0585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1601", "reference_id": "RHSA-2024:1601", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2092", "reference_id": "RHSA-2024:2092", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2092" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2093", "reference_id": "RHSA-2024:2093", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2093" }, { "reference_url": "https://usn.ubuntu.com/6237-1/", "reference_id": "USN-6237-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6237-1/" }, { "reference_url": "https://usn.ubuntu.com/6237-3/", "reference_id": "USN-6237-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6237-3/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/", "reference_id": "Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-13T19:43:16Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397190?format=api", "purl": "pkg:generic/curl.se/curl@8.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1qtm-g9cu-h3cs" }, { "vulnerability": "VCID-1rmr-ujs2-a7af" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-ahzz-h3g1-wycq" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-f4c9-1he1-9fb5" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.1.0" } ], "aliases": [ "CVE-2023-28322" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-swwv-dqka-37bt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/115660?format=api", "vulnerability_id": "VCID-t4sq-vrwh-h7dz", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3143.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3143.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3143", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04659", "scoring_system": "epss", "scoring_elements": "0.89552", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.04659", "scoring_system": "epss", "scoring_elements": "0.89586", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.04659", "scoring_system": "epss", "scoring_elements": "0.89593", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.04659", "scoring_system": "epss", "scoring_elements": "0.89592", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3143" }, { "reference_url": "https://curl.se/docs/CVE-2015-3143.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2015-3143.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3143" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3148" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1213306", "reference_id": "1213306", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1213306" }, { "reference_url": "https://security.gentoo.org/glsa/201509-02", "reference_id": "GLSA-201509-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201509-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:1254", "reference_id": "RHSA-2015:1254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:1254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:2159", "reference_id": "RHSA-2015:2159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:2159" }, { "reference_url": "https://usn.ubuntu.com/2591-1/", "reference_id": "USN-2591-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2591-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397119?format=api", "purl": "pkg:generic/curl.se/curl@7.42.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-79bx-ksvr-t3c7" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t2d3-b9qt-mfea" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.42.0" } ], "aliases": [ "CVE-2015-3143" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t4sq-vrwh-h7dz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1963?format=api", "vulnerability_id": "VCID-tkd3-tg3j-gbhx", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8621.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03438", "scoring_system": "epss", "scoring_elements": "0.87805", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.03438", "scoring_system": "epss", "scoring_elements": "0.8776", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03438", "scoring_system": "epss", "scoring_elements": "0.87801", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.03438", "scoring_system": "epss", "scoring_elements": "0.87807", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8621" }, { "reference_url": "https://curl.se/docs/CVE-2016-8621.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8621.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037192", "reference_id": "1037192", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "http://www.securitytracker.com/id/1037192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388385", "reference_id": "1388385", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388385" }, { "reference_url": "https://security.gentoo.org/glsa/201701-47", "reference_id": "201701-47", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "https://security.gentoo.org/glsa/201701-47" }, { "reference_url": "http://www.securityfocus.com/bid/94101", "reference_id": "94101", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "http://www.securityfocus.com/bid/94101" }, { "reference_url": "https://curl.haxx.se/docs/adv_20161102G.html", "reference_id": "adv_20161102G.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "https://curl.haxx.se/docs/adv_20161102G.html" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "reference_id": "cpuoct2018-4428296.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "reference_url": "https://curl.haxx.se/CVE-2016-8621.patch", "reference_id": "CVE-2016-8621.patch", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "https://curl.haxx.se/CVE-2016-8621.patch" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621", "reference_id": "show_bug.cgi?id=CVE-2016-8621", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8621" }, { "reference_url": "https://www.tenable.com/security/tns-2016-21", "reference_id": "tns-2016-21", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:33:21Z/" } ], "url": "https://www.tenable.com/security/tns-2016-21" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8621" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tkd3-tg3j-gbhx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/179860?format=api", "vulnerability_id": "VCID-u361-3r1v-2feu", "summary": "Multiple vulnerabilities have been found in cURL, the worst of\n which might allow remote execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2192.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2192.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2192", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02049", "scoring_system": "epss", "scoring_elements": "0.84238", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02049", "scoring_system": "epss", "scoring_elements": "0.84293", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02049", "scoring_system": "epss", "scoring_elements": "0.84301", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.02049", "scoring_system": "epss", "scoring_elements": "0.84296", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2192" }, { "reference_url": "https://curl.se/docs/CVE-2011-2192.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2011-2192.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2192", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2192" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631615", "reference_id": "631615", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631615" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=711454", "reference_id": "711454", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=711454" }, { "reference_url": "https://security.gentoo.org/glsa/201203-02", "reference_id": "GLSA-201203-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201203-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0918", "reference_id": "RHSA-2011:0918", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0918" }, { "reference_url": "https://usn.ubuntu.com/1158-1/", "reference_id": "USN-1158-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1158-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397095?format=api", "purl": "pkg:generic/curl.se/curl@7.21.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2zkw-u7gs-vyhc" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-5ykg-9jhc-tbc8" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7prf-q325-3ygv" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cn5-mxer-63fn" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9h7c-smy1-ckcc" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-fguu-tg7a-bfh9" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jffb-7ku1-v7d2" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-whwa-u32u-6bfn" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-x6fs-favf-tbc5" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.21.7" } ], "aliases": [ "CVE-2011-2192" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u361-3r1v-2feu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/212436?format=api", "vulnerability_id": "VCID-u3em-u5rs-47hg", "summary": "Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) security.dll, (2) secur32.dll, or (3) ws2_32.dll in the application or current working directory.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4802", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70297", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70387", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70401", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70399", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4802" }, { "reference_url": "https://curl.se/docs/CVE-2016-4802.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-4802.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397129?format=api", "purl": "pkg:generic/curl.se/curl@7.49.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.49.1" } ], "aliases": [ "CVE-2016-4802" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u3em-u5rs-47hg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1966?format=api", "vulnerability_id": "VCID-utxf-ej4j-aqf8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01136", "scoring_system": "epss", "scoring_elements": "0.78873", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01136", "scoring_system": "epss", "scoring_elements": "0.78877", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01136", "scoring_system": "epss", "scoring_elements": "0.7886", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01136", "scoring_system": "epss", "scoring_elements": "0.78795", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8624" }, { "reference_url": "https://curl.se/docs/CVE-2016-8624.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2016-8624.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037192", "reference_id": "1037192", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "http://www.securitytracker.com/id/1037192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388390", "reference_id": "1388390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388390" }, { "reference_url": "https://security.gentoo.org/glsa/201701-47", "reference_id": "201701-47", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://security.gentoo.org/glsa/201701-47" }, { "reference_url": "http://www.securityfocus.com/bid/94103", "reference_id": "94103", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "http://www.securityfocus.com/bid/94103" }, { "reference_url": "https://curl.haxx.se/docs/adv_20161102J.html", "reference_id": "adv_20161102J.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://curl.haxx.se/docs/adv_20161102J.html" }, { "reference_url": "https://security.archlinux.org/ASA-201611-10", "reference_id": "ASA-201611-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-10" }, { "reference_url": "https://security.archlinux.org/ASA-201611-4", "reference_id": "ASA-201611-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-4" }, { "reference_url": "https://security.archlinux.org/ASA-201611-5", "reference_id": "ASA-201611-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-5" }, { "reference_url": "https://security.archlinux.org/ASA-201611-7", "reference_id": "ASA-201611-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-7" }, { "reference_url": "https://security.archlinux.org/ASA-201611-8", "reference_id": "ASA-201611-8", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-8" }, { "reference_url": "https://security.archlinux.org/ASA-201611-9", "reference_id": "ASA-201611-9", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-9" }, { "reference_url": "https://security.archlinux.org/AVG-60", "reference_id": "AVG-60", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-60" }, { "reference_url": "https://security.archlinux.org/AVG-61", "reference_id": "AVG-61", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-61" }, { "reference_url": "https://security.archlinux.org/AVG-62", "reference_id": "AVG-62", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-62" }, { "reference_url": "https://security.archlinux.org/AVG-63", "reference_id": "AVG-63", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-63" }, { "reference_url": "https://security.archlinux.org/AVG-65", "reference_id": "AVG-65", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-65" }, { "reference_url": "https://security.archlinux.org/AVG-66", "reference_id": "AVG-66", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-66" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "reference_id": "cpuoct2018-4428296.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "reference_url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_id": "rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E", "reference_id": "rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://lists.apache.org/thread.html/rfaa4d578587f52a9c4d176af516a681a712c664e3be440a4163691d5%40%3Ccommits.pulsar.apache.org%3E" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624", "reference_id": "show_bug.cgi?id=CVE-2016-8624", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8624" }, { "reference_url": "https://www.tenable.com/security/tns-2016-21", "reference_id": "tns-2016-21", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:39:44Z/" } ], "url": "https://www.tenable.com/security/tns-2016-21" }, { "reference_url": "https://usn.ubuntu.com/3123-1/", "reference_id": "USN-3123-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3123-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397134?format=api", "purl": "pkg:generic/curl.se/curl@7.51.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.51.0" } ], "aliases": [ "CVE-2016-8624" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-utxf-ej4j-aqf8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/109500?format=api", "vulnerability_id": "VCID-x6fs-favf-tbc5", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0139.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0139.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0139", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01203", "scoring_system": "epss", "scoring_elements": "0.79337", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01203", "scoring_system": "epss", "scoring_elements": "0.79402", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01203", "scoring_system": "epss", "scoring_elements": "0.79416", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01203", "scoring_system": "epss", "scoring_elements": "0.79411", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0139" }, { "reference_url": "https://curl.se/docs/CVE-2014-0139.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2014-0139.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0138" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0139" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1079149", "reference_id": "1079149", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1079149" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728", "reference_id": "742728", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742728" }, { "reference_url": "https://security.gentoo.org/glsa/201406-21", "reference_id": "GLSA-201406-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201406-21" }, { "reference_url": "https://usn.ubuntu.com/2167-1/", "reference_id": "USN-2167-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2167-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397112?format=api", "purl": "pkg:generic/curl.se/curl@7.36.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2swf-9ue2-kfgk" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4b1m-dqzp-3bcd" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-67c4-1hvy-vyds" }, { "vulnerability": "VCID-6kdp-2stp-bbg2" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8cx8-3gfg-qydz" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-aduc-dvxh-97g5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c29a-wbxe-t3hp" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dbxj-5bn1-pfcq" }, { "vulnerability": "VCID-dnbc-x7gd-skdr" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-efdr-svrq-s7ff" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd5m-jmtk-nug1" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-hej1-qqyy-mbhg" }, { "vulnerability": "VCID-hqph-96tk-vkeq" }, { "vulnerability": "VCID-hu4v-qgtd-e7g7" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-ja81-vgz8-bkcf" }, { "vulnerability": "VCID-jjkp-u5bk-cfge" }, { "vulnerability": "VCID-jq62-dsd5-9be6" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-napu-8bt4-83d7" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p43j-25js-27fb" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmsg-uhqk-7kcs" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-qb1w-v8j9-vqg8" }, { "vulnerability": "VCID-qkn9-227f-mfec" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-su9s-6zsz-fffn" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t4sq-vrwh-h7dz" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tkd3-tg3j-gbhx" }, { "vulnerability": "VCID-u3em-u5rs-47hg" }, { "vulnerability": "VCID-utxf-ej4j-aqf8" }, { "vulnerability": "VCID-v3pu-2sy3-mkfy" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w52f-grp3-bfcs" }, { "vulnerability": "VCID-wmjs-b7nb-wfdr" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xnnb-1xft-e3h9" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ych6-34gj-xbda" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-yq3y-y1ju-3ygb" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.36.0" } ], "aliases": [ "CVE-2014-0139" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x6fs-favf-tbc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4817?format=api", "vulnerability_id": "VCID-xdjr-hcq8-m3en", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14618.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14618.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14618", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00493", "scoring_system": "epss", "scoring_elements": "0.66242", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00493", "scoring_system": "epss", "scoring_elements": "0.66149", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00493", "scoring_system": "epss", "scoring_elements": "0.66256", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00493", "scoring_system": "epss", "scoring_elements": "0.66253", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14618" }, { "reference_url": "https://curl.se/docs/CVE-2018-14618.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2018-14618.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1041605", "reference_id": "1041605", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "http://www.securitytracker.com/id/1041605" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1622707", "reference_id": "1622707", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1622707" }, { "reference_url": "https://security.gentoo.org/glsa/201903-03", "reference_id": "201903-03", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://security.gentoo.org/glsa/201903-03" }, { "reference_url": "https://usn.ubuntu.com/3765-1/", "reference_id": "3765-1", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://usn.ubuntu.com/3765-1/" }, { "reference_url": "https://usn.ubuntu.com/3765-2/", "reference_id": "3765-2", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://usn.ubuntu.com/3765-2/" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908327", "reference_id": "908327", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908327" }, { "reference_url": "https://curl.haxx.se/docs/CVE-2018-14618.html", "reference_id": "CVE-2018-14618.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://curl.haxx.se/docs/CVE-2018-14618.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4286", "reference_id": "dsa-4286", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://www.debian.org/security/2018/dsa-4286" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1880", "reference_id": "RHSA-2019:1880", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2019:1880" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14618", "reference_id": "show_bug.cgi?id=CVE-2018-14618", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14618" }, { "reference_url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0014", "reference_id": "SNWLID-2018-0014", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0014" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-436177.pdf", "reference_id": "ssa-436177.pdf", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-15T20:54:10Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-436177.pdf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397150?format=api", "purl": "pkg:generic/curl.se/curl@7.61.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4xzf-tk9w-5beu" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fu9h-ndbg-ebe1" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.61.1" } ], "aliases": [ "CVE-2018-14618" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xdjr-hcq8-m3en" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3849?format=api", "vulnerability_id": "VCID-ych6-34gj-xbda", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7407.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7407.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7407", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00196", "scoring_system": "epss", "scoring_elements": "0.41563", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00196", "scoring_system": "epss", "scoring_elements": "0.41581", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00196", "scoring_system": "epss", "scoring_elements": "0.41571", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00196", "scoring_system": "epss", "scoring_elements": "0.41398", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7407" }, { "reference_url": "https://curl.se/docs/CVE-2017-7407.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2017-7407.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7407", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7407" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:P/I:N/A:N" }, { "value": "2.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1439190", "reference_id": "1439190", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1439190" }, { "reference_url": "https://github.com/curl/curl/commit/1890d59905414ab84a35892b2e45833654aa5c13", "reference_id": "1890d59905414ab84a35892b2e45833654aa5c13", "reference_type": "", "scores": [ { "value": "2.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/" } ], "url": "https://github.com/curl/curl/commit/1890d59905414ab84a35892b2e45833654aa5c13" }, { "reference_url": "https://security.gentoo.org/glsa/201709-14", "reference_id": "201709-14", "reference_type": "", "scores": [ { "value": "2.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/" } ], "url": "https://security.gentoo.org/glsa/201709-14" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859500", "reference_id": "859500", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859500" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html", "reference_id": "cpuoct2018-4428296.html", "reference_type": "", "scores": [ { "value": "2.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [ { "value": "2.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:44:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3441-1/", "reference_id": "USN-3441-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-1/" }, { "reference_url": "https://usn.ubuntu.com/3441-2/", "reference_id": "USN-3441-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397139?format=api", "purl": "pkg:generic/curl.se/curl@7.54.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-argu-xr4w-k7e8" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-n81g-jqmb-ykez" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-p6eq-vzz3-hufv" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zhdv-1mpu-8qaj" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.54.0" } ], "aliases": [ "CVE-2017-7407" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ych6-34gj-xbda" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2302?format=api", "vulnerability_id": "VCID-zhdv-1mpu-8qaj", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000254.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000254.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-1000254", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01318", "scoring_system": "epss", "scoring_elements": "0.80282", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01318", "scoring_system": "epss", "scoring_elements": "0.80351", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01318", "scoring_system": "epss", "scoring_elements": "0.8036", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01318", "scoring_system": "epss", "scoring_elements": "0.80343", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-1000254" }, { "reference_url": "https://curl.se/docs/CVE-2017-1000254.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2017-1000254.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495541", "reference_id": "1495541", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495541" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877671", "reference_id": "877671", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877671" }, { "reference_url": "https://security.archlinux.org/ASA-201710-2", "reference_id": "ASA-201710-2", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-2" }, { "reference_url": "https://security.archlinux.org/ASA-201710-3", "reference_id": "ASA-201710-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-3" }, { "reference_url": "https://security.archlinux.org/ASA-201710-4", "reference_id": "ASA-201710-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-4" }, { "reference_url": "https://security.archlinux.org/ASA-201710-5", "reference_id": "ASA-201710-5", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-5" }, { "reference_url": "https://security.archlinux.org/ASA-201710-6", "reference_id": "ASA-201710-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-6" }, { "reference_url": "https://security.archlinux.org/ASA-201710-7", "reference_id": "ASA-201710-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-7" }, { "reference_url": "https://security.archlinux.org/AVG-371", "reference_id": "AVG-371", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-371" }, { "reference_url": "https://security.archlinux.org/AVG-386", "reference_id": "AVG-386", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-386" }, { "reference_url": "https://security.archlinux.org/AVG-387", "reference_id": "AVG-387", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-387" }, { "reference_url": "https://security.archlinux.org/AVG-388", "reference_id": "AVG-388", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-388" }, { "reference_url": "https://security.archlinux.org/AVG-389", "reference_id": "AVG-389", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-389" }, { "reference_url": "https://security.archlinux.org/AVG-422", "reference_id": "AVG-422", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-422" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2486", "reference_id": "RHSA-2018:2486", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2486" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3558", "reference_id": "RHSA-2018:3558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3558" }, { "reference_url": "https://usn.ubuntu.com/3441-1/", "reference_id": "USN-3441-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-1/" }, { "reference_url": "https://usn.ubuntu.com/3441-2/", "reference_id": "USN-3441-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3441-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397143?format=api", "purl": "pkg:generic/curl.se/curl@7.56.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-4qjs-fd78-8ybe" }, { "vulnerability": "VCID-51te-du9b-53cr" }, { "vulnerability": "VCID-5xt5-jny2-j7ek" }, { "vulnerability": "VCID-7amb-2mnc-93fd" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-7r2a-yuyx-r7ak" }, { "vulnerability": "VCID-8g8m-sqrs-hqaj" }, { "vulnerability": "VCID-94sh-e8r1-e3f1" }, { "vulnerability": "VCID-9ce8-u6cg-3khs" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-bysw-s2uj-9kb3" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-ccqh-htx6-suev" }, { "vulnerability": "VCID-cfm3-jg25-2bge" }, { "vulnerability": "VCID-cy1t-vy6m-pfep" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dwdw-7qrb-wyhm" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-eksp-76ef-a7f9" }, { "vulnerability": "VCID-euja-2jd6-9fh8" }, { "vulnerability": "VCID-fqju-fts8-jkgw" }, { "vulnerability": "VCID-fvt9-f948-q3cy" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-gb5d-czbu-4yge" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-gd9s-t88s-4kcg" }, { "vulnerability": "VCID-geum-kp4d-kqbv" }, { "vulnerability": "VCID-gx3x-27ay-fbh1" }, { "vulnerability": "VCID-j1pt-fypb-tfhn" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-j7zd-wmfq-rfgb" }, { "vulnerability": "VCID-jc4g-g8yk-3ff4" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-m2q3-wbn9-9bce" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nhzb-mceu-wfem" }, { "vulnerability": "VCID-nnhf-pazs-zqd7" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pmzj-mxwq-pugz" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q73d-12pz-zyda" }, { "vulnerability": "VCID-rxca-tcvy-97dq" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-vkqm-wnda-f7a2" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-wgen-d944-jbb6" }, { "vulnerability": "VCID-wsjp-xmdr-2key" }, { "vulnerability": "VCID-xdjr-hcq8-m3en" }, { "vulnerability": "VCID-xhba-8zpp-ebgk" }, { "vulnerability": "VCID-xqzz-c4bm-g7hs" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" }, { "vulnerability": "VCID-ygyz-uske-subh" }, { "vulnerability": "VCID-zq2b-kk36-5ug8" }, { "vulnerability": "VCID-zr6v-xu4q-nyc3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.56.0" } ], "aliases": [ "CVE-2017-1000254" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zhdv-1mpu-8qaj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11768?format=api", "vulnerability_id": "VCID-zq2b-kk36-5ug8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27774.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27774.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27774", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00306", "scoring_system": "epss", "scoring_elements": "0.5421", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00306", "scoring_system": "epss", "scoring_elements": "0.54337", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00306", "scoring_system": "epss", "scoring_elements": "0.54352", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00306", "scoring_system": "epss", "scoring_elements": "0.54336", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27774" }, { "reference_url": "https://curl.se/docs/CVE-2022-27774.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "cvssv3.1", "scoring_elements": "" } ], "url": "https://curl.se/docs/CVE-2022-27774.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22898" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27774" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010254", "reference_id": "1010254", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010254" }, { "reference_url": "https://hackerone.com/reports/1543773", "reference_id": "1543773", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/" } ], "url": "https://hackerone.com/reports/1543773" }, { "reference_url": "https://security.gentoo.org/glsa/202212-01", "reference_id": "202212-01", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/" } ], "url": "https://security.gentoo.org/glsa/202212-01" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077547", "reference_id": "2077547", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077547" }, { "reference_url": "https://security.archlinux.org/AVG-2685", "reference_id": "AVG-2685", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2685" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5197", "reference_id": "dsa-5197", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5197" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html", "reference_id": "msg00028.html", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220609-0008/", "reference_id": "ntap-20220609-0008", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T13:41:23Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20220609-0008/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5245", "reference_id": "RHSA-2022:5245", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5245" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5313", "reference_id": "RHSA-2022:5313", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5313" }, { "reference_url": "https://usn.ubuntu.com/5397-1/", "reference_id": "USN-5397-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5397-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/397180?format=api", "purl": "pkg:generic/curl.se/curl@7.83.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15vf-uh76-fffg" }, { "vulnerability": "VCID-1gxw-nhcc-9fas" }, { "vulnerability": "VCID-1x2x-4yv8-r3hx" }, { "vulnerability": "VCID-29pa-qatj-m3fn" }, { "vulnerability": "VCID-2ghx-y6k5-2ba5" }, { "vulnerability": "VCID-2hty-64mk-rba6" }, { "vulnerability": "VCID-2wvm-3er5-2qgu" }, { "vulnerability": "VCID-2zmz-vfh1-zbcm" }, { "vulnerability": "VCID-325c-cvw6-6qgt" }, { "vulnerability": "VCID-32d9-adqp-vfet" }, { "vulnerability": "VCID-3dek-xvet-57b2" }, { "vulnerability": "VCID-79fs-mmfv-zkbv" }, { "vulnerability": "VCID-7g25-eu3j-77g3" }, { "vulnerability": "VCID-85pa-r1x5-7bb9" }, { "vulnerability": "VCID-9cj7-vebc-ybgd" }, { "vulnerability": "VCID-9q4b-nx61-k3e8" }, { "vulnerability": "VCID-9z9v-xfyw-s7gq" }, { "vulnerability": "VCID-a3w3-1xpd-c3b5" }, { "vulnerability": "VCID-arzc-bd5z-63c6" }, { "vulnerability": "VCID-c3zg-7243-83c7" }, { "vulnerability": "VCID-d9mq-vbxb-17da" }, { "vulnerability": "VCID-dxfp-qwxm-r3aw" }, { "vulnerability": "VCID-emud-tmr4-kbau" }, { "vulnerability": "VCID-g7zb-swgx-83dz" }, { "vulnerability": "VCID-g888-a9ew-ekf7" }, { "vulnerability": "VCID-gd1h-nu7e-k3gv" }, { "vulnerability": "VCID-j5ba-n9r8-7fcs" }, { "vulnerability": "VCID-jc8d-t4k4-1be5" }, { "vulnerability": "VCID-kz8k-da4w-ufak" }, { "vulnerability": "VCID-mazz-6byr-mue9" }, { "vulnerability": "VCID-mu51-vn7x-eyhh" }, { "vulnerability": "VCID-ng3a-cbbj-2uc7" }, { "vulnerability": "VCID-nmpe-hbcx-eyen" }, { "vulnerability": "VCID-nsdu-5cw5-z3ak" }, { "vulnerability": "VCID-nwwg-zjba-gkdx" }, { "vulnerability": "VCID-pugn-x664-gudd" }, { "vulnerability": "VCID-puq6-9fxe-sbf4" }, { "vulnerability": "VCID-q48h-p22q-nkae" }, { "vulnerability": "VCID-qzaj-5374-q3ct" }, { "vulnerability": "VCID-rmb3-vgdv-abey" }, { "vulnerability": "VCID-rmtm-d2dk-vfcr" }, { "vulnerability": "VCID-ru47-h3fb-qugd" }, { "vulnerability": "VCID-rxkp-fpvn-1fge" }, { "vulnerability": "VCID-s856-t81z-rkgb" }, { "vulnerability": "VCID-shx4-hjxr-ufee" }, { "vulnerability": "VCID-skay-2qbt-v3h5" }, { "vulnerability": "VCID-swwv-dqka-37bt" }, { "vulnerability": "VCID-t5qz-7wtb-tfcz" }, { "vulnerability": "VCID-tr9z-2dn3-qycw" }, { "vulnerability": "VCID-u8re-brxj-rbb6" }, { "vulnerability": "VCID-w6yx-9eg3-97ct" }, { "vulnerability": "VCID-xhet-h2we-v7dr" }, { "vulnerability": "VCID-y5yw-e2b2-cyen" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.83.0" } ], "aliases": [ "CVE-2022-27774" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zq2b-kk36-5ug8" } ], "fixing_vulnerabilities": [], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@7.15.4" }