Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/4066?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "type": "deb", "namespace": "debian", "name": "tiff", "version": "4.0.2-6+deb7u5", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "4.7.1-2", "latest_non_vulnerable_version": "4.7.1-2", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4746?format=api", "vulnerability_id": "VCID-13fq-85pm-9ucx", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3623.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02534", "scoring_system": "epss", "scoring_elements": "0.85728", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02534", "scoring_system": "epss", "scoring_elements": "0.85745", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02534", "scoring_system": "epss", "scoring_elements": "0.85748", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02534", "scoring_system": "epss", "scoring_elements": "0.85744", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02534", "scoring_system": "epss", "scoring_elements": "0.85723", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325089", "reference_id": "1325089", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325089" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3623" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-13fq-85pm-9ucx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4708?format=api", "vulnerability_id": "VCID-19y7-v51n-pfa5", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7554.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7554.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7554", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81985", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.8199", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81991", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81955", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81989", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7554" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7554", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7554" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294417", "reference_id": "1294417", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294417" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809066", "reference_id": "809066", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809066" }, { "reference_url": "https://security.archlinux.org/ASA-201707-17", "reference_id": "ASA-201707-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-17" }, { "reference_url": "https://security.archlinux.org/ASA-201707-18", "reference_id": "ASA-201707-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-18" }, { "reference_url": "https://security.archlinux.org/AVG-5", "reference_id": "AVG-5", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-5" }, { "reference_url": "https://security.archlinux.org/AVG-87", "reference_id": "AVG-87", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-87" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-7554" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-19y7-v51n-pfa5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102795?format=api", "vulnerability_id": "VCID-24bg-v8c6-q3f6", "summary": "In LibTIFF 4.0.6 and possibly other versions, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, as demonstrated by a heap-based buffer over-read in bmp2tiff. NOTE: mentioning bmp2tiff does not imply that the activation point is in the bmp2tiff.c file (which was removed before the 4.0.7 release).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9117.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9117.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9117", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29565", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29531", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29596", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29563", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29634", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9117" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9117", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9117" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1456756", "reference_id": "1456756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1456756" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9117" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-24bg-v8c6-q3f6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102781?format=api", "vulnerability_id": "VCID-29an-d9j1-subv", "summary": "In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17942.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17942.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17942", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61529", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61578", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61557", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61584", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61574", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17942" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1529524", "reference_id": "1529524", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1529524" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885579", "reference_id": "885579", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885579" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-17942" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-29an-d9j1-subv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44446?format=api", "vulnerability_id": "VCID-2chc-4dg7-eyah", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0801.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0801.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07847", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07823", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07881", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07894", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07867", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/498", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/498" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170172", "reference_id": "2170172", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170172" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0801", "reference_id": "CVE-2023-0801", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0801" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0801.json", "reference_id": "CVE-2023-0801.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0801.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0801" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2chc-4dg7-eyah" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102758?format=api", "vulnerability_id": "VCID-2fkp-y8v2-hqck", "summary": "tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds writes) via a crafted TIFF image, a different vulnerability than CVE-2015-8781.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.7791", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77938", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77944", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77935", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77924", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8782" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2fkp-y8v2-hqck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102814?format=api", "vulnerability_id": "VCID-2mct-5s36-3qeq", "summary": "In LibTIFF 4.0.9, there is a NULL pointer dereference in the TIFFWriteDirectorySec function in tif_dirwrite.c that will lead to a denial of service attack, as demonstrated by tiffset.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19210.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19210.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.91104", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.91117", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.9111", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.91116", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.91114", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1649385", "reference_id": "1649385", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1649385" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913675", "reference_id": "913675", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913675" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-19210" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2mct-5s36-3qeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44431?format=api", "vulnerability_id": "VCID-2q3f-jw6b-w7dp", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0797.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0797.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02066", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02082", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0209", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02079", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/495", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/495" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170151", "reference_id": "2170151", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170151" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0797", "reference_id": "CVE-2023-0797", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0797" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0797.json", "reference_id": "CVE-2023-0797.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0797.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0797" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2q3f-jw6b-w7dp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3174?format=api", "vulnerability_id": "VCID-2z91-euur-mkg6", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.27941", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2788", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2796", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.27924", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2801", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/410", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/410" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084269", "reference_id": "2084269", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084269" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1622", "reference_id": "CVE-2022-1622", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1622" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json", "reference_id": "CVE-2022-1622.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1622" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2z91-euur-mkg6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4736?format=api", "vulnerability_id": "VCID-346w-g3br-qyfj", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3991.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3991.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63728", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63708", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63679", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.6372", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63721", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326249", "reference_id": "1326249", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326249" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3991" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-346w-g3br-qyfj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45135?format=api", "vulnerability_id": "VCID-38yd-3y7b-dyds", "summary": "Out-of-bounds Write\nBuffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c.", "references": [ { "reference_url": "http://libtiff-release-v4-0-7.com", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "http://libtiff-release-v4-0-7.com" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30086", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2246", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22571", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22558", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22509", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30086" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30086", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30086" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/538", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/538" }, { "reference_url": "http://tiffcp.com", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "http://tiffcp.com" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2203650", "reference_id": "2203650", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2203650" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30086", "reference_id": "CVE-2023-30086", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30086" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230616-0003/", "reference_id": "ntap-20230616-0003", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230616-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-30086" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-38yd-3y7b-dyds" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102804?format=api", "vulnerability_id": "VCID-3hc7-p5t2-vuht", "summary": "TIFFClientOpen in tif_unix.c in LibTIFF 3.8.2 has memory leaks, as demonstrated by bmp2tiff.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10801.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10801.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10801", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61348", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61396", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61373", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61404", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.6139", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10801" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577392", "reference_id": "1577392", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577392" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2018-10801" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3hc7-p5t2-vuht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3165?format=api", "vulnerability_id": "VCID-3xy1-2v4a-yqdk", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03598", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03585", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03616", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03608", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03603", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118863", "reference_id": "2118863", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118863" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2868", "reference_id": "CVE-2022-2868", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2868" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://usn.ubuntu.com/5604-1/", "reference_id": "USN-5604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5604-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2868" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3xy1-2v4a-yqdk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4717?format=api", "vulnerability_id": "VCID-4gq3-smes-y3ej", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9532.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9532.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69491", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69469", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69444", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69481", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69483", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397726", "reference_id": "1397726", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397726" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844057", "reference_id": "844057", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844057" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9532" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4gq3-smes-y3ej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3157?format=api", "vulnerability_id": "VCID-4nzz-rnew-73e7", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.29935", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.29966", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30004", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.29908", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3970" }, { "reference_url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be" }, { "reference_url": "https://oss-fuzz.com/download?testcase_id=5738253143900160", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://oss-fuzz.com/download?testcase_id=5738253143900160" }, { "reference_url": "https://vuldb.com/?id.213549", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://vuldb.com/?id.213549" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737", "reference_id": "1024737", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2148918", "reference_id": "2148918", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2148918" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3970", "reference_id": "CVE-2022-3970", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3970" }, { "reference_url": "https://support.apple.com/kb/HT213841", "reference_id": "HT213841", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://support.apple.com/kb/HT213841" }, { "reference_url": "https://support.apple.com/kb/HT213843", "reference_id": "HT213843", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://support.apple.com/kb/HT213843" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20221215-0009/", "reference_id": "ntap-20221215-0009", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20221215-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2883", "reference_id": "RHSA-2023:2883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2883" }, { "reference_url": "https://usn.ubuntu.com/5743-1/", "reference_id": "USN-5743-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5743-1/" }, { "reference_url": "https://usn.ubuntu.com/5743-2/", "reference_id": "USN-5743-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5743-2/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3970" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4nzz-rnew-73e7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102821?format=api", "vulnerability_id": "VCID-4ry5-9ggw-zkh8", "summary": "Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the \"TIFFVGetField\" funtion in the component 'libtiff/tif_dir.c'.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19143.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19143.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19143", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76975", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.77008", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.77017", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.77005", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76995", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19143" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19143" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003801", "reference_id": "2003801", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003801" }, { "reference_url": "https://usn.ubuntu.com/5084-1/", "reference_id": "USN-5084-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5084-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-19143" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4ry5-9ggw-zkh8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3168?format=api", "vulnerability_id": "VCID-5652-c7tg-6uft", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.1825", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18218", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18331", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18293", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18327", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/424" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122792", "reference_id": "2122792", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122792" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2520", "reference_id": "CVE-2022-2520", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2520" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2520" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5652-c7tg-6uft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4714?format=api", "vulnerability_id": "VCID-5bpk-63mp-myea", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9535.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9535.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69974", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.7001", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.70023", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69998", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.70014", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397755", "reference_id": "1397755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397755" }, { "reference_url": "https://github.com/vadz/libtiff/commit/3ca657a8793dd011bf869695d72ad31c779c3cc1", "reference_id": "3ca657a8793dd011bf869695d72ad31c779c3cc1", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-29T20:24:50Z/" } ], "url": "https://github.com/vadz/libtiff/commit/3ca657a8793dd011bf869695d72ad31c779c3cc1" }, { "reference_url": "https://github.com/vadz/libtiff/commit/6a984bf7905c6621281588431f384e79d11a2e33", "reference_id": "6a984bf7905c6621281588431f384e79d11a2e33", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-29T20:24:50Z/" } ], "url": "https://github.com/vadz/libtiff/commit/6a984bf7905c6621281588431f384e79d11a2e33" }, { "reference_url": "http://www.securityfocus.com/bid/94484", "reference_id": "94484", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-29T20:24:50Z/" } ], "url": "http://www.securityfocus.com/bid/94484" }, { "reference_url": "http://www.securityfocus.com/bid/94744", "reference_id": "94744", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-29T20:24:50Z/" } ], "url": "http://www.securityfocus.com/bid/94744" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "dsa-3844", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-29T20:24:50Z/" } ], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0225.html", "reference_id": "RHSA-2017-0225.html", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-29T20:24:50Z/" } ], "url": "http://rhn.redhat.com/errata/RHSA-2017-0225.html" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9535" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5bpk-63mp-myea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102791?format=api", "vulnerability_id": "VCID-5pcg-xe5q-1qdt", "summary": "LibTIFF 4.0.7 has an \"outside the range of representable values of type short\" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39014", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38978", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39066", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.3907", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39041", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441259", "reference_id": "1441259", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441259" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7599" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5pcg-xe5q-1qdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102809?format=api", "vulnerability_id": "VCID-611d-157a-4fc3", "summary": "newoffsets handling in ChopUpSingleUncompressedStrip in tif_dirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. This is a different vulnerability than CVE-2018-15209.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16335.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16335.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83667", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83691", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.8368", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83692", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83688", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1624981", "reference_id": "1624981", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1624981" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907795", "reference_id": "907795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907795" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-16335" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-611d-157a-4fc3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6204?format=api", "vulnerability_id": "VCID-631h-1ukc-2kbr", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8905.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8905.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.71062", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.7103", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.71013", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.71045", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.71055", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-8905" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1559704", "reference_id": "1559704", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1559704" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893806", "reference_id": "893806", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893806" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-8905" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-631h-1ukc-2kbr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102808?format=api", "vulnerability_id": "VCID-672k-12q2-5ybx", "summary": "ChopUpSingleUncompressedStrip in tif_dirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15209.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15209.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70627", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.7067", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00678", "scoring_system": "epss", "scoring_elements": "0.7199", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00678", "scoring_system": "epss", "scoring_elements": "0.71968", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00678", "scoring_system": "epss", "scoring_elements": "0.71953", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1614051", "reference_id": "1614051", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1614051" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905798", "reference_id": "905798", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905798" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:5079", "reference_id": "RHSA-2024:5079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:5079" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-15209" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-672k-12q2-5ybx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6205?format=api", "vulnerability_id": "VCID-6bqr-yf8y-xba6", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7456.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7456.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00689", "scoring_system": "epss", "scoring_elements": "0.72199", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00689", "scoring_system": "epss", "scoring_elements": "0.72165", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00689", "scoring_system": "epss", "scoring_elements": "0.72151", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00689", "scoring_system": "epss", "scoring_elements": "0.72178", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00689", "scoring_system": "epss", "scoring_elements": "0.72193", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1556708", "reference_id": "1556708", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1556708" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891288", "reference_id": "891288", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891288" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2051", "reference_id": "RHSA-2019:2051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-7456" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6bqr-yf8y-xba6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44445?format=api", "vulnerability_id": "VCID-6daw-xvw5-tyfw", "summary": "Use After Free\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0799.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0799.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02905", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02855", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02917", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02924", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02872", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/494", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/494" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170162", "reference_id": "2170162", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170162" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0799", "reference_id": "CVE-2023-0799", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0799" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0799.json", "reference_id": "CVE-2023-0799.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0799.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0799" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6daw-xvw5-tyfw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4756?format=api", "vulnerability_id": "VCID-6f7j-jffy-g3h1", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8130.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8130.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8130", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.84283", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.843", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.84294", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.84274", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.84298", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8130" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185817", "reference_id": "1185817", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185817" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2014-8130" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6f7j-jffy-g3h1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4734?format=api", "vulnerability_id": "VCID-6j88-9v6m-aqaa", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5314.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5314.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01026", "scoring_system": "epss", "scoring_elements": "0.77645", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01026", "scoring_system": "epss", "scoring_elements": "0.77659", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01026", "scoring_system": "epss", "scoring_elements": "0.77666", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01026", "scoring_system": "epss", "scoring_elements": "0.77656", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01026", "scoring_system": "epss", "scoring_elements": "0.77631", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346697", "reference_id": "1346697", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346697" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5314" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6j88-9v6m-aqaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44576?format=api", "vulnerability_id": "VCID-6rz4-7zc4-bfcd", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01931", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.0193", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01945", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01953", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01943", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/277", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/277" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2176220", "reference_id": "2176220", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2176220" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/", "reference_id": "2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/", "reference_id": "BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4645", "reference_id": "CVE-2022-4645", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4645" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json", "reference_id": "CVE-2022-4645.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230331-0001/", "reference_id": "ntap-20230331-0001", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230331-0001/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/", "reference_id": "OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3059", "reference_id": "RHSA-2024:3059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3059" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-4645" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6rz4-7zc4-bfcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6220?format=api", "vulnerability_id": "VCID-6vbx-9hme-ckgy", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18557.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18557.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.23568", "scoring_system": "epss", "scoring_elements": "0.96087", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.23568", "scoring_system": "epss", "scoring_elements": "0.96091", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.23568", "scoring_system": "epss", "scoring_elements": "0.96082", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.23568", "scoring_system": "epss", "scoring_elements": "0.9609", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644229", "reference_id": "1644229", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644229" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911635", "reference_id": "911635", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911635" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1697", "reference_id": "CVE-2018-18557", "reference_type": "exploit", "scores": [], "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1697" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/45694.c", "reference_id": "CVE-2018-18557", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/45694.c" }, { "reference_url": "https://security.gentoo.org/glsa/201904-15", "reference_id": "GLSA-201904-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-15" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-18557" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6vbx-9hme-ckgy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3167?format=api", "vulnerability_id": "VCID-72yn-u5c2-qkfd", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31201", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31165", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31134", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31233", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/422" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122799", "reference_id": "2122799", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122799" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2521", "reference_id": "CVE-2022-2521", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2521" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-72yn-u5c2-qkfd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6219?format=api", "vulnerability_id": "VCID-7fq4-rz4j-nye3", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18661.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18661.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18661", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40061", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40006", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.39977", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40033", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40058", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18661" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644448", "reference_id": "1644448", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644448" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912012", "reference_id": "912012", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912012" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-18661" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7fq4-rz4j-nye3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102822?format=api", "vulnerability_id": "VCID-8dyu-ua2v-x7hf", "summary": "Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the 'in _TIFFmemcpy' funtion in the component 'tif_unix.c'.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19144.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19144.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19144", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81493", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81521", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81523", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81516", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19144" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19144", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19144" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003799", "reference_id": "2003799", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003799" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2020-19144" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8dyu-ua2v-x7hf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3166?format=api", "vulnerability_id": "VCID-8hrj-ge12-v3d9", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03708", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03693", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03728", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03717", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03725", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118847", "reference_id": "2118847", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118847" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2867", "reference_id": "CVE-2022-2867", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2867" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://usn.ubuntu.com/5604-1/", "reference_id": "USN-5604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5604-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2867" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8hrj-ge12-v3d9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45464?format=api", "vulnerability_id": "VCID-8pzd-tzc6-w7a8", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25435.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25435.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25435", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16637", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16597", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16719", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16716", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16678", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25435" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25435", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25435" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/518", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-06T19:11:03Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/518" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216614", "reference_id": "2216614", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216614" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25435", "reference_id": "CVE-2023-25435", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25435" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-25435" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8pzd-tzc6-w7a8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4748?format=api", "vulnerability_id": "VCID-8t9a-wr15-s3gj", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3621.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3621.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3621", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00676", "scoring_system": "epss", "scoring_elements": "0.71883", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00676", "scoring_system": "epss", "scoring_elements": "0.71912", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00676", "scoring_system": "epss", "scoring_elements": "0.71919", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00676", "scoring_system": "epss", "scoring_elements": "0.71897", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00676", "scoring_system": "epss", "scoring_elements": "0.71873", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3621" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324822", "reference_id": "1324822", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324822" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820364", "reference_id": "820364", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820364" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3621" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8t9a-wr15-s3gj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102792?format=api", "vulnerability_id": "VCID-98hw-rjd6-p3ab", "summary": "LibTIFF 4.0.7 has an \"outside the range of representable values of type unsigned char\" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7600.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52627", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52605", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52664", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52671", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52652", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441260", "reference_id": "1441260", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441260" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7600" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-98hw-rjd6-p3ab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4923?format=api", "vulnerability_id": "VCID-9fb5-82gn-c7em", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0909.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0909.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42415", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42355", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42329", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42405", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/393", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/393" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/310" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064146", "reference_id": "2064146", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064146" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0909", "reference_id": "CVE-2022-0909", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0909" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0909.json", "reference_id": "CVE-2022-0909.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0909.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0909" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9fb5-82gn-c7em" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102769?format=api", "vulnerability_id": "VCID-9tzh-51wj-u3g9", "summary": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 8\" and libtiff/tif_read.c:523:22.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10270.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10270.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00617", "scoring_system": "epss", "scoring_elements": "0.70327", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00617", "scoring_system": "epss", "scoring_elements": "0.70369", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00617", "scoring_system": "epss", "scoring_elements": "0.70348", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00617", "scoring_system": "epss", "scoring_elements": "0.70378", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00617", "scoring_system": "epss", "scoring_elements": "0.7036", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438441", "reference_id": "1438441", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438441" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=846837", "reference_id": "846837", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=846837" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10270" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9tzh-51wj-u3g9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102759?format=api", "vulnerability_id": "VCID-9ufr-s5hf-j3bg", "summary": "tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds reads) via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.6355", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63592", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63599", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.6359", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63579", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8783" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9ufr-s5hf-j3bg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3173?format=api", "vulnerability_id": "VCID-9vzm-g4pv-dkga", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56347", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56381", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.5641", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56397", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56403", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/410", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/410" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084260", "reference_id": "2084260", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084260" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1623", "reference_id": "CVE-2022-1623", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1623" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json", "reference_id": "CVE-2022-1623.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1623" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9vzm-g4pv-dkga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4716?format=api", "vulnerability_id": "VCID-ajjg-j3u3-87hb", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9533.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9533.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00224", "scoring_system": "epss", "scoring_elements": "0.45165", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00224", "scoring_system": "epss", "scoring_elements": "0.45117", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00224", "scoring_system": "epss", "scoring_elements": "0.45092", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00224", "scoring_system": "epss", "scoring_elements": "0.45145", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00224", "scoring_system": "epss", "scoring_elements": "0.45161", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397769", "reference_id": "1397769", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397769" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9533" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ajjg-j3u3-87hb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3161?format=api", "vulnerability_id": "VCID-am9k-887b-zbhh", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [ { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00661", "published_at": "2026-06-04T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00651", "published_at": "2026-06-08T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00658", "published_at": "2026-06-06T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00655", "published_at": "2026-06-07T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00657", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/381" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/386", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/386" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142734", "reference_id": "2142734", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142734" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3570", "reference_id": "CVE-2022-3570", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3570" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json", "reference_id": "CVE-2022-3570.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5705-1/", "reference_id": "USN-5705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5705-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3570" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-am9k-887b-zbhh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4735?format=api", "vulnerability_id": "VCID-aqsc-pckt-8kb6", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5102.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5102.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69935", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69951", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.6996", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69946", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69911", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5102" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5102" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343407", "reference_id": "1343407", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343407" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5102" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aqsc-pckt-8kb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45521?format=api", "vulnerability_id": "VCID-arvt-qqf4-wbg2", "summary": "NULL Pointer Dereference\nA null pointer dereference issue was discovered in Libtiff's tif_dir.c file. This flaw allows an attacker to pass a crafted TIFF image file to the tiffcp utility, which triggers runtime error, causing an undefined behavior, resulting in an application crash, eventually leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-2908.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-2908.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-2908", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02839", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02902", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02908", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02855", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-2908" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218830", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218830" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2908" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/479", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/479" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-2908", "reference_id": "CVE-2023-2908", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-2908" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2908", "reference_id": "CVE-2023-2908", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2908" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230731-0004/", "reference_id": "ntap-20230731-0004", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230731-0004/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2023-2908" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-arvt-qqf4-wbg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/89613?format=api", "vulnerability_id": "VCID-aw5d-2n95-m3fj", "summary": "libtiff: NULL pointer dereference in tif_dirinfo.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7006.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7006.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7006", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.68021", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.68029", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.68018", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.68005", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7006" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7006", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7006" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078648", "reference_id": "1078648", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078648" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302996", "reference_id": "2302996", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302996" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-7006", "reference_id": "CVE-2024-7006", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-7006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:6360", "reference_id": "RHSA-2024:6360", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:6360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8833", "reference_id": "RHSA-2024:8833", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:8833" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8914", "reference_id": "RHSA-2024:8914", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:8914" }, { "reference_url": "https://usn.ubuntu.com/6997-1/", "reference_id": "USN-6997-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6997-1/" }, { "reference_url": "https://usn.ubuntu.com/6997-2/", "reference_id": "USN-6997-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6997-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2024-7006" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aw5d-2n95-m3fj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102807?format=api", "vulnerability_id": "VCID-ayaa-beyt-xkcu", "summary": "Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12900.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12900.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93143", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93155", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93149", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93154", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93151", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595575", "reference_id": "1595575", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595575" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902718", "reference_id": "902718", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3419", "reference_id": "RHSA-2019:3419", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3419" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-12900" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ayaa-beyt-xkcu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4926?format=api", "vulnerability_id": "VCID-b1uw-w9nk-v3ht", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08565", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08582", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08613", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08617", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/380" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/382" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064411", "reference_id": "2064411", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064411" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0891", "reference_id": "CVE-2022-0891", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0891" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json", "reference_id": "CVE-2022-0891.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0891" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b1uw-w9nk-v3ht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102794?format=api", "vulnerability_id": "VCID-bg9z-zm7j-8kdh", "summary": "LibTIFF 4.0.7 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7602.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7602.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52123", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52104", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52164", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52173", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52153", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441263", "reference_id": "1441263", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441263" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7602" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bg9z-zm7j-8kdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44437?format=api", "vulnerability_id": "VCID-bhkq-eqaw-1fba", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0800.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0800.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07847", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07823", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07881", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07894", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07867", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/496", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/496" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170167", "reference_id": "2170167", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170167" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0800", "reference_id": "CVE-2023-0800", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0800" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0800.json", "reference_id": "CVE-2023-0800.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0800.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0800" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bhkq-eqaw-1fba" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4752?format=api", "vulnerability_id": "VCID-bmhd-pxe4-5kg3", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43195", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43139", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43112", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43174", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43186", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294427", "reference_id": "1294427", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294427" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021", "reference_id": "809021", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8683" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bmhd-pxe4-5kg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45236?format=api", "vulnerability_id": "VCID-c9w3-hck6-q3g1", "summary": "Out-of-bounds Write\nA vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30774", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09817", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11511", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11477", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11397", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30774" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2187139", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2187139" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30774" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/463", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/463" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-30774", "reference_id": "CVE-2023-30774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2023-30774" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30774", "reference_id": "CVE-2023-30774", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-30774" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c9w3-hck6-q3g1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102763?format=api", "vulnerability_id": "VCID-canh-syw2-zyeq", "summary": "Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5 and 4.0.6 allows remote attackers to have unspecified impact via a crafted image, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10093.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10093.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73449", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73486", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73465", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73491", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73478", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410116", "reference_id": "1410116", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410116" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10093" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-canh-syw2-zyeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102629?format=api", "vulnerability_id": "VCID-canj-96xs-8kg7", "summary": "libtiff: out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3626.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3626.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11882", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11841", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11968", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11963", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11925", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/426", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/426" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142741", "reference_id": "2142741", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142741" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3626", "reference_id": "CVE-2022-3626", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3626" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json", "reference_id": "CVE-2022-3626.JSON", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3626" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-canj-96xs-8kg7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44430?format=api", "vulnerability_id": "VCID-ccsd-p6nq-93ae", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0802.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0802.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07847", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07823", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07881", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07894", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07867", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/500", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/500" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170178", "reference_id": "2170178", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170178" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0802", "reference_id": "CVE-2023-0802", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0802" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0802.json", "reference_id": "CVE-2023-0802.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0802.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0802" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ccsd-p6nq-93ae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/77602?format=api", "vulnerability_id": "VCID-cpk7-uyvf-3kb6", "summary": "libtiff: LibTIFF Null Pointer Dereference", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-13978.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-13978.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-13978", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.34033", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.34066", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.34099", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.34084", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-13978" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-13978", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-13978" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111323", "reference_id": "1111323", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111323" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2386059", "reference_id": "2386059", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2386059" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/2ebfffb0e8836bfb1cd7d85c059cd285c59761a4", "reference_id": "2ebfffb0e8836bfb1cd7d85c059cd285c59761a4", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/2ebfffb0e8836bfb1cd7d85c059cd285c59761a4" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/649", "reference_id": "649", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/649" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/667", "reference_id": "667", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/667" }, { "reference_url": "https://vuldb.com/?ctiid.318355", "reference_id": "?ctiid.318355", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://vuldb.com/?ctiid.318355" }, { "reference_url": "https://vuldb.com/?id.318355", "reference_id": "?id.318355", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://vuldb.com/?id.318355" }, { "reference_url": "https://vuldb.com/?submit.624562", "reference_id": "?submit.624562", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://vuldb.com/?submit.624562" }, { "reference_url": "http://www.libtiff.org/", "reference_id": "www.libtiff.org", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "http://www.libtiff.org/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509752?format=api", "purl": "pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2" } ], "aliases": [ "CVE-2024-13978" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cpk7-uyvf-3kb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4745?format=api", "vulnerability_id": "VCID-d1v8-kg4j-ayek", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3624.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01325", "scoring_system": "epss", "scoring_elements": "0.80263", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01325", "scoring_system": "epss", "scoring_elements": "0.80271", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01325", "scoring_system": "epss", "scoring_elements": "0.80274", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01325", "scoring_system": "epss", "scoring_elements": "0.8027", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01325", "scoring_system": "epss", "scoring_elements": "0.80247", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325090", "reference_id": "1325090", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325090" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3624" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d1v8-kg4j-ayek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/74631?format=api", "vulnerability_id": "VCID-d4hm-me5r-g7ck", "summary": "libtiff: Libtiff Write-What-Where", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9900.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9900.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-9900", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11929", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12045", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12041", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.12003", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-9900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9900" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392784", "reference_id": "2392784", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392784" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/704", "reference_id": "704", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/704" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/732", "reference_id": "732", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/732" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_id": "cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9", "reference_id": "cpe:/a:redhat:discovery:2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1", "reference_id": "cpe:/a:redhat:hummingbird:1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-9900", "reference_id": "CVE-2025-9900", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-9900" }, { "reference_url": "https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=readme-ov-file", "reference_id": "LibTiff-4.7.0-Write-What-Where?tab=readme-ov-file", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=readme-ov-file" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17651", "reference_id": "RHSA-2025:17651", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17651" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17675", "reference_id": "RHSA-2025:17675", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17675" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17710", "reference_id": "RHSA-2025:17710", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17710" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17738", "reference_id": "RHSA-2025:17738", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17738" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17739", "reference_id": "RHSA-2025:17739", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17740", "reference_id": "RHSA-2025:17740", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17740" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19113", "reference_id": "RHSA-2025:19113", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19156", "reference_id": "RHSA-2025:19156", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19276", "reference_id": "RHSA-2025:19276", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19276" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19906", "reference_id": "RHSA-2025:19906", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19906" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19947", "reference_id": "RHSA-2025:19947", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19947" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20956", "reference_id": "RHSA-2025:20956", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20956" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20998", "reference_id": "RHSA-2025:20998", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20998" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21060", "reference_id": "RHSA-2025:21060", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21061", "reference_id": "RHSA-2025:21061", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21061" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21062", "reference_id": "RHSA-2025:21062", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21407", "reference_id": "RHSA-2025:21407", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21506", "reference_id": "RHSA-2025:21506", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21507", "reference_id": "RHSA-2025:21507", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21508", "reference_id": "RHSA-2025:21508", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21994", "reference_id": "RHSA-2025:21994", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21994" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23078", "reference_id": "RHSA-2025:23078", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23079", "reference_id": "RHSA-2025:23079", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23080", "reference_id": "RHSA-2025:23080", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0001", "reference_id": "RHSA-2026:0001", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0001" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0076", "reference_id": "RHSA-2026:0076", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0076" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0077", "reference_id": "RHSA-2026:0077", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0078", "reference_id": "RHSA-2026:0078", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3461", "reference_id": "RHSA-2026:3461", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3462", "reference_id": "RHSA-2026:3462", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7504", "reference_id": "RHSA-2026:7504", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7504" }, { "reference_url": "https://usn.ubuntu.com/7783-1/", "reference_id": "USN-7783-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7783-1/" }, { "reference_url": "https://usn.ubuntu.com/8345-1/", "reference_id": "USN-8345-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8345-1/" }, { "reference_url": "https://usn.ubuntu.com/8346-1/", "reference_id": "USN-8346-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8346-1/" }, { "reference_url": "https://usn.ubuntu.com/8347-1/", "reference_id": "USN-8347-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8347-1/" }, { "reference_url": "https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html", "reference_id": "v4.7.1.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2025-9900" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d4hm-me5r-g7ck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/46898?format=api", "vulnerability_id": "VCID-d93s-emc6-ayae", "summary": "Out-of-bounds Write\nA segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52356.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52356.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52356", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00717", "scoring_system": "epss", "scoring_elements": "0.72779", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00717", "scoring_system": "epss", "scoring_elements": "0.72792", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.73239", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.73245", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52356" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251344", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52356" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/622", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/622" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/546", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/546" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061524", "reference_id": "1061524", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061524" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_id": "cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.3::el9", "reference_id": "cpe:/a:redhat:ai_inference_server:3.3::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.3::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9", "reference_id": "cpe:/a:redhat:discovery:2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-52356", "reference_id": "CVE-2023-52356", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-52356" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52356", "reference_id": "CVE-2023-52356", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:5079", "reference_id": "RHSA-2024:5079", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:5079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20801", "reference_id": "RHSA-2025:20801", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20801" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21994", "reference_id": "RHSA-2025:21994", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21994" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23078", "reference_id": "RHSA-2025:23078", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23079", "reference_id": "RHSA-2025:23079", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23080", "reference_id": "RHSA-2025:23080", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:16174", "reference_id": "RHSA-2026:16174", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:16174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3461", "reference_id": "RHSA-2026:3461", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3462", "reference_id": "RHSA-2026:3462", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5958", "reference_id": "RHSA-2026:5958", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:5958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7081", "reference_id": "RHSA-2026:7081", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7081" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7304", "reference_id": "RHSA-2026:7304", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7335", "reference_id": "RHSA-2026:7335", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8746", "reference_id": "RHSA-2026:8746", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:8746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8747", "reference_id": "RHSA-2026:8747", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:8747" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8748", "reference_id": "RHSA-2026:8748", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:8748" }, { "reference_url": "https://usn.ubuntu.com/6644-1/", "reference_id": "USN-6644-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6644-1/" }, { "reference_url": "https://usn.ubuntu.com/6644-2/", "reference_id": "USN-6644-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6644-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2023-52356" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d93s-emc6-ayae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4733?format=api", "vulnerability_id": "VCID-dbtw-xgms-g7a1", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5315.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5315.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00176", "scoring_system": "epss", "scoring_elements": "0.38886", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00176", "scoring_system": "epss", "scoring_elements": "0.38937", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00176", "scoring_system": "epss", "scoring_elements": "0.38942", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00176", "scoring_system": "epss", "scoring_elements": "0.38913", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00176", "scoring_system": "epss", "scoring_elements": "0.38849", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346694", "reference_id": "1346694", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346694" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5315" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dbtw-xgms-g7a1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45398?format=api", "vulnerability_id": "VCID-dgyb-2jpx-7ber", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25434.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46689", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46713", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46759", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.4674", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46756", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25434" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/519", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:18:44Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/519" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215209", "reference_id": "2215209", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215209" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25434", "reference_id": "CVE-2023-25434", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25434" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-25434" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dgyb-2jpx-7ber" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102773?format=api", "vulnerability_id": "VCID-dh4d-qkhm-pkha", "summary": "An exploitable remote code execution vulnerability exists in the handling of TIFF images in LibTIFF version 4.0.6. A crafted TIFF document can lead to a type confusion vulnerability resulting in remote code execution. This vulnerability can be triggered via a TIFF file delivered to the application using LibTIFF's tag extension functionality.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8331.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8331.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8331", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.91039", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.91053", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.91045", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.91052", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.91049", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8331" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389229", "reference_id": "1389229", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389229" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-8331" ], "risk_score": 3.6, "exploitability": "0.5", "weighted_severity": "7.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dh4d-qkhm-pkha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4750?format=api", "vulnerability_id": "VCID-dyvz-88n7-aug5", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3619.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3619.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3619", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76797", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.7681", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76817", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76807", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76778", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3619" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316569", "reference_id": "1316569", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316569" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820362", "reference_id": "820362", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820362" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3619" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dyvz-88n7-aug5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102790?format=api", "vulnerability_id": "VCID-e2f7-aptp-8fdu", "summary": "tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7598.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00544", "scoring_system": "epss", "scoring_elements": "0.68131", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00544", "scoring_system": "epss", "scoring_elements": "0.68106", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00544", "scoring_system": "epss", "scoring_elements": "0.68145", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00544", "scoring_system": "epss", "scoring_elements": "0.68153", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00544", "scoring_system": "epss", "scoring_elements": "0.68146", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441254", "reference_id": "1441254", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441254" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7598" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e2f7-aptp-8fdu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102746?format=api", "vulnerability_id": "VCID-e2fw-bbeg-3qby", "summary": "Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length and resolution in a TIFF image file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83439", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83464", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83465", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83461", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83453", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674", "reference_id": "706674", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=952131", "reference_id": "952131", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952131" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/1832-1/", "reference_id": "USN-1832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-1961" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e2fw-bbeg-3qby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4709?format=api", "vulnerability_id": "VCID-eane-ev3e-93d3", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9540.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9540.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62252", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62225", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62196", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62241", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62245", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9540" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397768", "reference_id": "1397768", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397768" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9540" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eane-ev3e-93d3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4729?format=api", "vulnerability_id": "VCID-eaxr-tudk-jfff", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5319.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5319.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75663", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75682", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75685", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75675", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75654", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5319" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344069", "reference_id": "1344069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344069" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046", "reference_id": "842046", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5319" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eaxr-tudk-jfff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102789?format=api", "vulnerability_id": "VCID-ebpy-1xg8-kfhm", "summary": "tif_dirread.c in LibTIFF 4.0.7 has an \"outside the range of representable values of type float\" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43393", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43368", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43441", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43451", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43427", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441252", "reference_id": "1441252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441252" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7597" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ebpy-1xg8-kfhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6206?format=api", "vulnerability_id": "VCID-ehrs-qbcg-z3e1", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5784.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5784.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.59112", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.59088", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.59059", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.59104", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.59108", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537740", "reference_id": "1537740", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537740" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890441", "reference_id": "890441", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890441" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-5784" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ehrs-qbcg-z3e1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4742?format=api", "vulnerability_id": "VCID-enmp-vfzt-ubdn", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66961", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66929", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66912", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66945", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66953", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3632" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325095", "reference_id": "1325095", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325095" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3632" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-enmp-vfzt-ubdn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4740?format=api", "vulnerability_id": "VCID-evq9-mjww-1qdk", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3634.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3634.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3634", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.7226", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.72288", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.72294", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.72274", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.72246", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3634" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3634", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3634" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326267", "reference_id": "1326267", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326267" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3634" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-evq9-mjww-1qdk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4751?format=api", "vulnerability_id": "VCID-eys7-uqtb-k3hf", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3186.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3186.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00733", "scoring_system": "epss", "scoring_elements": "0.73123", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00733", "scoring_system": "epss", "scoring_elements": "0.73149", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00733", "scoring_system": "epss", "scoring_elements": "0.73155", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00733", "scoring_system": "epss", "scoring_elements": "0.73136", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00733", "scoring_system": "epss", "scoring_elements": "0.73111", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3186" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319666", "reference_id": "1319666", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319666" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819972", "reference_id": "819972", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819972" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3186" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eys7-uqtb-k3hf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4711?format=api", "vulnerability_id": "VCID-f79u-ccnn-fkb2", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9538.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9538.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62115", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62089", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62059", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62103", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62108", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397765", "reference_id": "1397765", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397765" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9538" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f79u-ccnn-fkb2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102768?format=api", "vulnerability_id": "VCID-f9ny-geg2-ebdy", "summary": "LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6 and 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 512\" and libtiff/tif_unix.c:340:2.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10269.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10269.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.71479", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.71523", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.7149", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.7153", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.71506", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438443", "reference_id": "1438443", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438443" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10269" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f9ny-geg2-ebdy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102747?format=api", "vulnerability_id": "VCID-faz2-7zdq-w3fb", "summary": "Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) extension block in a GIF image or (2) GIF raster image to tools/gif2tiff.c or (3) a long filename for a TIFF image to tools/rgb2ycbcr.c. NOTE: vectors 1 and 3 are disputed by Red Hat, which states that the input cannot exceed the allocated buffer size.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95353", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.9536", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95363", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95365", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303", "reference_id": "719303", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=995965", "reference_id": "995965", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=995965" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4231" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-faz2-7zdq-w3fb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102786?format=api", "vulnerability_id": "VCID-ffbw-vews-n7h3", "summary": "The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (memory leak) via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7594.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48838", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48817", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48878", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48886", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48868", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441247", "reference_id": "1441247", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441247" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860001", "reference_id": "860001", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860001" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7594" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ffbw-vews-n7h3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/46140?format=api", "vulnerability_id": "VCID-fm7d-pca1-hkeh", "summary": "Integer Overflow or Wraparound\nA vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41175.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41175.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51873", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51916", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51925", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51905", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-41175" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235264", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-29T19:34:04Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235264" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-41175", "reference_id": "CVE-2023-41175", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-29T19:34:04Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-41175" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41175", "reference_id": "CVE-2023-41175", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2289", "reference_id": "RHSA-2024:2289", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-29T19:34:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2289" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-41175" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fm7d-pca1-hkeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3323?format=api", "vulnerability_id": "VCID-fmgr-9d3k-fycq", "summary": "denial of service", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1355.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1355.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22348", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22433", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22318", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2242", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22371", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/400", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/400" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/323" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160", "reference_id": "1011160", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074415", "reference_id": "2074415", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074415" }, { "reference_url": "https://security.archlinux.org/AVG-2721", "reference_id": "AVG-2721", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2721" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-1355", "reference_id": "CVE-2022-1355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2022-1355" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1355", "reference_id": "CVE-2022-1355", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1355" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1355" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fmgr-9d3k-fycq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3171?format=api", "vulnerability_id": "VCID-fn4f-qgf7-rudy", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25821", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25813", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25914", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25869", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25923", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/427", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/427" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494", "reference_id": "1014494", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222", "reference_id": "2103222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2057", "reference_id": "CVE-2022-2057", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2057" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2057.json", "reference_id": "CVE-2022-2057.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2057.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2057" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fn4f-qgf7-rudy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3163?format=api", "vulnerability_id": "VCID-fpbq-ppxw-f7c2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04641", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04602", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04651", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04638", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04664", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/48d6ece8389b01129e7d357f0985c8f938ce3da3", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/48d6ece8389b01129e7d357f0985c8f938ce3da3" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/414", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/414" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134432", "reference_id": "2134432", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134432" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2953", "reference_id": "CVE-2022-2953", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2953" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2953.json", "reference_id": "CVE-2022-2953.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2953.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2953" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fpbq-ppxw-f7c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3170?format=api", "vulnerability_id": "VCID-fqx5-v7z8-n7gz", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25821", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25813", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25914", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25869", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25923", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/428" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494", "reference_id": "1014494", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222", "reference_id": "2103222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2058", "reference_id": "CVE-2022-2058", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2058" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2058.json", "reference_id": "CVE-2022-2058.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2058.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2058" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fqx5-v7z8-n7gz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3164?format=api", "vulnerability_id": "VCID-fr9e-d4k4-qbeu", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07336", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0731", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07376", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07353", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0737", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118869", "reference_id": "2118869", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118869" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2869", "reference_id": "CVE-2022-2869", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2869" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://usn.ubuntu.com/5604-1/", "reference_id": "USN-5604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5604-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2869" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fr9e-d4k4-qbeu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3156?format=api", "vulnerability_id": "VCID-g46h-2sqe-xkbk", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01343", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01353", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01349", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01356", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01357", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-48281" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/488", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/488" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5333", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5333" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653", "reference_id": "1029653", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163606", "reference_id": "2163606", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163606" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48281", "reference_id": "CVE-2022-48281", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48281" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230302-0004/", "reference_id": "ntap-20230302-0004", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230302-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3827", "reference_id": "RHSA-2023:3827", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3827" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-48281" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g46h-2sqe-xkbk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69776?format=api", "vulnerability_id": "VCID-g65z-w3mz-7qh4", "summary": "tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a \"Negative-size-param\" condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17546.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17546.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59332", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59383", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59358", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59386", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59377", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1765705", "reference_id": "1765705", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1765705" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3902", "reference_id": "RHSA-2020:3902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3902" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4634", "reference_id": "RHSA-2020:4634", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4634" }, { "reference_url": "https://usn.ubuntu.com/4158-1/", "reference_id": "USN-4158-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4158-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-17546" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g65z-w3mz-7qh4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102817?format=api", "vulnerability_id": "VCID-ggn4-tvmm-8baa", "summary": "The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory leak, as demonstrated by pal2rgb.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6128.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6128.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6128", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.85137", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.85149", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.85166", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.8516", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.85161", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6128" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667122", "reference_id": "1667122", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667122" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921157", "reference_id": "921157", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921157" }, { "reference_url": "https://security.archlinux.org/ASA-201911-13", "reference_id": "ASA-201911-13", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201911-13" }, { "reference_url": "https://security.archlinux.org/AVG-886", "reference_id": "AVG-886", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-886" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-6128" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ggn4-tvmm-8baa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4928?format=api", "vulnerability_id": "VCID-gh3j-c1nj-sfby", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0562.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0562.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10712", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10592", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10645", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10676", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10688", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/gitlab-org/build/omnibus-mirror/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/build/omnibus-mirror/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/362" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054495", "reference_id": "2054495", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054495" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0562", "reference_id": "CVE-2022-0562", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0562" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0562.json", "reference_id": "CVE-2022-0562.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0562.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0562" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gh3j-c1nj-sfby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102757?format=api", "vulnerability_id": "VCID-gnkb-u976-3qaw", "summary": "tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds write) via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80906", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80935", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80931", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80937", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80934", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8781" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gnkb-u976-3qaw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4732?format=api", "vulnerability_id": "VCID-gpud-pv1v-67c1", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5316.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5316.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00683", "scoring_system": "epss", "scoring_elements": "0.72056", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00683", "scoring_system": "epss", "scoring_elements": "0.72085", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00683", "scoring_system": "epss", "scoring_elements": "0.72092", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00683", "scoring_system": "epss", "scoring_elements": "0.72069", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00683", "scoring_system": "epss", "scoring_elements": "0.72044", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346690", "reference_id": "1346690", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346690" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5316" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gpud-pv1v-67c1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/54150?format=api", "vulnerability_id": "VCID-gpww-4m2k-57br", "summary": "Integer Overflow or Wraparound\nAn integer overflow flaw was found in libtiff that exists in the `tif_getimage.c` file. This flaw allows an attacker to inject and execute arbitrary code when a user opens a crafted TIFF file. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35523.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35523.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35523", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00251", "scoring_system": "epss", "scoring_elements": "0.48649", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00251", "scoring_system": "epss", "scoring_elements": "0.4871", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00251", "scoring_system": "epss", "scoring_elements": "0.48671", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00251", "scoring_system": "epss", "scoring_elements": "0.48719", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00251", "scoring_system": "epss", "scoring_elements": "0.487", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35523" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932040", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932040" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35523", "reference_id": "CVE-2020-35523", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35523" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" }, { "reference_url": "https://usn.ubuntu.com/4755-1/", "reference_id": "USN-4755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4755-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35523" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gpww-4m2k-57br" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102765?format=api", "vulnerability_id": "VCID-gqad-j76g-tyg5", "summary": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_read.c:351:22.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10266.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10266.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.5757", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57622", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.5763", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.5761", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438472", "reference_id": "1438472", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438472" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10266" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gqad-j76g-tyg5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4755?format=api", "vulnerability_id": "VCID-gr1x-z5t8-j3eh", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7313.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7313.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7313", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32451", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3238", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32351", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32379", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32419", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7313" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1265998", "reference_id": "1265998", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1265998" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800124", "reference_id": "800124", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800124" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-7313" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gr1x-z5t8-j3eh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4720?format=api", "vulnerability_id": "VCID-h17a-js2a-x7dh", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9297.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9297.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00352", "scoring_system": "epss", "scoring_elements": "0.57937", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00352", "scoring_system": "epss", "scoring_elements": "0.57913", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00352", "scoring_system": "epss", "scoring_elements": "0.57876", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00352", "scoring_system": "epss", "scoring_elements": "0.57925", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00352", "scoring_system": "epss", "scoring_elements": "0.57929", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395264", "reference_id": "1395264", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395264" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844226", "reference_id": "844226", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844226" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9297" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h17a-js2a-x7dh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4718?format=api", "vulnerability_id": "VCID-h9nx-bv3h-dyev", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9453.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9453.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53032", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53076", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53007", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53068", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53057", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397723", "reference_id": "1397723", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397723" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9453" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h9nx-bv3h-dyev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102751?format=api", "vulnerability_id": "VCID-hac2-vcxa-cffp", "summary": "LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77278", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77307", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77318", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77298", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185812", "reference_id": "1185812", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185812" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-8128" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hac2-vcxa-cffp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4921?format=api", "vulnerability_id": "VCID-hbjb-er6u-37dz", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22844.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22844.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19489", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19376", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19422", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19446", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19496", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-22844" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/355" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/287", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/287" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2042603", "reference_id": "2042603", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2042603" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22844", "reference_id": "CVE-2022-22844", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22844" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-22844" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hbjb-er6u-37dz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4715?format=api", "vulnerability_id": "VCID-hep7-wa9u-ybbb", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9534.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9534.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63912", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.6389", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63863", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63903", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63905", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397751", "reference_id": "1397751", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397751" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9534" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hep7-wa9u-ybbb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102785?format=api", "vulnerability_id": "VCID-hv4a-w9rs-4fg4", "summary": "tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is properly initialized, which might allow remote attackers to obtain sensitive information from process memory via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7593.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7593.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45591", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45563", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45632", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45636", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45617", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441246", "reference_id": "1441246", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441246" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860000", "reference_id": "860000", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860000" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7593" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hv4a-w9rs-4fg4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/46141?format=api", "vulnerability_id": "VCID-hykv-yanw-1bf9", "summary": "Integer Overflow or Wraparound\nLibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40745.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40745.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51743", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51752", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51731", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51699", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-40745" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235265", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235265" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-40745", "reference_id": "CVE-2023-40745", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2023-40745" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40745", "reference_id": "CVE-2023-40745", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40745" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2289", "reference_id": "RHSA-2024:2289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2289" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-40745" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hykv-yanw-1bf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102748?format=api", "vulnerability_id": "VCID-j7gx-b3sq-hqap", "summary": "Use-after-free vulnerability in the t2p_readwrite_pdf_image function in tools/tiff2pdf.c in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80287", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80312", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80315", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80311", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80304", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303", "reference_id": "719303", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=995975", "reference_id": "995975", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=995975" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4232" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j7gx-b3sq-hqap" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4744?format=api", "vulnerability_id": "VCID-j812-5e7u-77gj", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3625.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3625.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3625", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56946", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56966", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56973", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56961", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56915", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3625" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3625", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3625" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325091", "reference_id": "1325091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325091" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2016-3625" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j812-5e7u-77gj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4927?format=api", "vulnerability_id": "VCID-jm7h-py2k-c7ha", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0865.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0865.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10848", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10731", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10773", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10811", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10858", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/385", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/385" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/306", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/306" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064406", "reference_id": "2064406", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064406" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0865", "reference_id": "CVE-2022-0865", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0865" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0865.json", "reference_id": "CVE-2022-0865.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0865.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0865" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jm7h-py2k-c7ha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4741?format=api", "vulnerability_id": "VCID-jpk4-8v2b-tkd3", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3633.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3633.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3633", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64104", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64118", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64127", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64116", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64076", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3633" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3633", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3633" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326255", "reference_id": "1326255", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326255" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046", "reference_id": "842046", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3633" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jpk4-8v2b-tkd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102816?format=api", "vulnerability_id": "VCID-k4db-v3dj-wbaa", "summary": "_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14973.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14973.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0313", "scoring_system": "epss", "scoring_elements": "0.87103", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0313", "scoring_system": "epss", "scoring_elements": "0.87125", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0313", "scoring_system": "epss", "scoring_elements": "0.87114", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0313", "scoring_system": "epss", "scoring_elements": "0.87122", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0313", "scoring_system": "epss", "scoring_elements": "0.87117", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1745951", "reference_id": "1745951", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1745951" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934780", "reference_id": "934780", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934780" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1688", "reference_id": "RHSA-2020:1688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3902", "reference_id": "RHSA-2020:3902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3902" }, { "reference_url": "https://usn.ubuntu.com/4158-1/", "reference_id": "USN-4158-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4158-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-14973" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k4db-v3dj-wbaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4713?format=api", "vulnerability_id": "VCID-k5c9-5xnv-57f7", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9536.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9536.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62115", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62089", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62059", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62103", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62108", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397758", "reference_id": "1397758", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397758" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9536" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k5c9-5xnv-57f7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102782?format=api", "vulnerability_id": "VCID-kaj7-scpx-87dc", "summary": "LibTIFF version 4.0.7 is vulnerable to a heap buffer overflow in the tools/tiffcp resulting in DoS or code execution via a crafted BitsPerSample value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5225.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5225.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00724", "scoring_system": "epss", "scoring_elements": "0.72958", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00724", "scoring_system": "epss", "scoring_elements": "0.72935", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00724", "scoring_system": "epss", "scoring_elements": "0.72948", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00724", "scoring_system": "epss", "scoring_elements": "0.72966", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00724", "scoring_system": "epss", "scoring_elements": "0.72921", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037911", "reference_id": "1037911", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://www.securitytracker.com/id/1037911" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1412716", "reference_id": "1412716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1412716" }, { "reference_url": "https://github.com/vadz/libtiff/commit/5c080298d59efa53264d7248bbe3a04660db6ef7", "reference_id": "5c080298d59efa53264d7248bbe3a04660db6ef7", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "https://github.com/vadz/libtiff/commit/5c080298d59efa53264d7248bbe3a04660db6ef7" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851297", "reference_id": "851297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851297" }, { "reference_url": "http://www.securityfocus.com/bid/95413", "reference_id": "95413", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://www.securityfocus.com/bid/95413" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "dsa-3844", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2656", "reference_id": "show_bug.cgi?id=2656", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2656" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2657", "reference_id": "show_bug.cgi?id=2657", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2657" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-4/", "reference_id": "USN-3212-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-5225" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kaj7-scpx-87dc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3172?format=api", "vulnerability_id": "VCID-kgbx-td11-53cs", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25821", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25813", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25914", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25869", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25923", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/415", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/415" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494", "reference_id": "1014494", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222", "reference_id": "2103222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2056", "reference_id": "CVE-2022-2056", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2056" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2056.json", "reference_id": "CVE-2022-2056.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2056.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2056" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kgbx-td11-53cs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4754?format=api", "vulnerability_id": "VCID-kucf-4yqt-3fbg", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43306", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43248", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43224", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43282", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43297", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294444", "reference_id": "1294444", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294444" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968", "reference_id": "808968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8665" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kucf-4yqt-3fbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3158?format=api", "vulnerability_id": "VCID-kv51-zgyb-fffy", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08573", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08608", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08604", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08625", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08556", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/411", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/411" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142742", "reference_id": "2142742", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142742" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3627", "reference_id": "CVE-2022-3627", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3627" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json", "reference_id": "CVE-2022-3627.JSON", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2883", "reference_id": "RHSA-2023:2883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2883" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3627" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kv51-zgyb-fffy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102753?format=api", "vulnerability_id": "VCID-m2ga-kxun-8qf3", "summary": "Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80431", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80456", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80458", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80455", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.8045", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177893", "reference_id": "1177893", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177893" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987", "reference_id": "773987", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-9330" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m2ga-kxun-8qf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4753?format=api", "vulnerability_id": "VCID-ma1y-1jua-3bhz", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8668.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8668.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8668", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91432", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91425", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91416", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91429", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.9143", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8668" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8668", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8668" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294425", "reference_id": "1294425", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294425" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046", "reference_id": "842046", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8668" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ma1y-1jua-3bhz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/54145?format=api", "vulnerability_id": "VCID-mg3n-auw4-r7aa", "summary": "Improper Restriction of Operations within the Bounds of a Memory Buffer\nA flaw was found in libtiff. Due to a memory allocation failure in `tif_read.c`, a crafted TIFF file can lead to an abort, resulting in denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35521.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35521.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35521", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22325", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2241", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22294", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22396", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22347", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35521" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35521" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35521", "reference_id": "CVE-2020-35521", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35521" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35521" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mg3n-auw4-r7aa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102780?format=api", "vulnerability_id": "VCID-mhv7-ssh3-dfbr", "summary": "tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17095.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17095.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04367", "scoring_system": "epss", "scoring_elements": "0.89143", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.04367", "scoring_system": "epss", "scoring_elements": "0.8916", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.04367", "scoring_system": "epss", "scoring_elements": "0.89161", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" }, { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1524284", "reference_id": "1524284", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1524284" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883320", "reference_id": "883320", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883320" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2750", "reference_id": "CVE-2017-17095", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2750" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43322.txt", "reference_id": "CVE-2017-17095", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43322.txt" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:4658", "reference_id": "RHSA-2025:4658", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:4658" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-17095" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mhv7-ssh3-dfbr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45637?format=api", "vulnerability_id": "VCID-mn3y-yrxt-jkgx", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nA flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3618.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3618.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3618", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00268", "scoring_system": "epss", "scoring_elements": "0.50444", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00268", "scoring_system": "epss", "scoring_elements": "0.50486", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00268", "scoring_system": "epss", "scoring_elements": "0.50494", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00268", "scoring_system": "epss", "scoring_elements": "0.50474", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3618" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215865", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3618" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/8a4f6b587be4fa7bb39fe17f5f9dec52182ab26e", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/8a4f6b587be4fa7bb39fe17f5f9dec52182ab26e" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040945", "reference_id": "1040945", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040945" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3618", "reference_id": "CVE-2023-3618", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3618" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3618", "reference_id": "CVE-2023-3618", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3618" }, { "reference_url": "https://support.apple.com/kb/HT214036", "reference_id": "HT214036", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://support.apple.com/kb/HT214036" }, { "reference_url": "https://support.apple.com/kb/HT214037", "reference_id": "HT214037", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://support.apple.com/kb/HT214037" }, { "reference_url": "https://support.apple.com/kb/HT214038", "reference_id": "HT214038", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://support.apple.com/kb/HT214038" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230824-0012/", "reference_id": "ntap-20230824-0012", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230824-0012/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2289", "reference_id": "RHSA-2024:2289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2289" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2023-3618" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mn3y-yrxt-jkgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102815?format=api", "vulnerability_id": "VCID-mn4b-21cd-k3eh", "summary": "LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstrated by a heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c in GraphicsMagick 1.3.27.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5360.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.64219", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.64263", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.64249", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.64271", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.6426", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5360" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535494", "reference_id": "1535494", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535494" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2018-5360" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mn4b-21cd-k3eh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102772?format=api", "vulnerability_id": "VCID-mzhm-ecrs-aqaq", "summary": "The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10371.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10371.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10371", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65517", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.6557", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65558", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.6558", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65569", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10371" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10371", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10371" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449534", "reference_id": "1449534", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449534" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862929", "reference_id": "862929", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862929" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10371" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mzhm-ecrs-aqaq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4730?format=api", "vulnerability_id": "VCID-n1yd-y1ur-cqgx", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5318.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5318.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5318", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01036", "scoring_system": "epss", "scoring_elements": "0.77742", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01036", "scoring_system": "epss", "scoring_elements": "0.77755", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01036", "scoring_system": "epss", "scoring_elements": "0.77762", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01036", "scoring_system": "epss", "scoring_elements": "0.77752", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01036", "scoring_system": "epss", "scoring_elements": "0.77728", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5318" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344068", "reference_id": "1344068", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344068" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5318" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n1yd-y1ur-cqgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44435?format=api", "vulnerability_id": "VCID-n6xy-jdpr-tfbq", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0795.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0795.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02066", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02082", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0209", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02079", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/493", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/493" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170119", "reference_id": "2170119", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170119" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0795", "reference_id": "CVE-2023-0795", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0795" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0795.json", "reference_id": "CVE-2023-0795.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0795.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0795" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n6xy-jdpr-tfbq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/54148?format=api", "vulnerability_id": "VCID-ndga-7wj3-xfc8", "summary": "Improper Restriction of Operations within the Bounds of a Memory Buffer\nIn LibTIFF, there is a memory malloc failure in `tif_pixarlog.c`. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35522.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35522.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35522", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.134", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13479", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13366", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13485", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13445", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35522" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932037", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932037" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35522", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35522" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35522", "reference_id": "CVE-2020-35522", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35522" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35522" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ndga-7wj3-xfc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102760?format=api", "vulnerability_id": "VCID-nezb-t4bq-jbav", "summary": "The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.75993", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.76018", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.7601", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.75996", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301652", "reference_id": "1301652", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301652" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8784" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nezb-t4bq-jbav" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/46132?format=api", "vulnerability_id": "VCID-nhb2-strk-c7df", "summary": "Missing Release of Memory after Effective Lifetime\nA memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3576.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3576.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0679", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06794", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06782", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0674", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3576" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3576", "reference_id": "CVE-2023-3576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2023-3576" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3576", "reference_id": "CVE-2023-3576", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6512-1/", "reference_id": "USN-6512-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6512-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-3576" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nhb2-strk-c7df" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4929?format=api", "vulnerability_id": "VCID-nrc9-7pss-6bgh", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0561.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0561.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18758", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18638", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18677", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18718", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18755", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/362" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054494", "reference_id": "2054494", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054494" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0561", "reference_id": "CVE-2022-0561", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0561" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0561.json", "reference_id": "CVE-2022-0561.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0561.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0561" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nrc9-7pss-6bgh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3324?format=api", "vulnerability_id": "VCID-ns8v-m9be-pkfx", "summary": "denial of service", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1354.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1354.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.1952", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19596", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19477", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19591", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19546", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/319" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074404", "reference_id": "2074404", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074404" }, { "reference_url": "https://security.archlinux.org/AVG-2721", "reference_id": "AVG-2721", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2721" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-1354", "reference_id": "CVE-2022-1354", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2022-1354" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1354", "reference_id": "CVE-2022-1354", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1354" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1354" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ns8v-m9be-pkfx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4710?format=api", "vulnerability_id": "VCID-nubb-rk2q-z3de", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9539.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9539.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9539", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62115", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62089", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62059", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62103", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62108", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9539" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9539", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9539" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397767", "reference_id": "1397767", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397767" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9539" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nubb-rk2q-z3de" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6223?format=api", "vulnerability_id": "VCID-nvzg-8vh5-m3fy", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11613.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11613.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.6831", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.68287", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.68261", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.68302", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.68303", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1475530", "reference_id": "1475530", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1475530" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869823", "reference_id": "869823", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869823" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-11613" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nvzg-8vh5-m3fy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102798?format=api", "vulnerability_id": "VCID-nxqc-thj2-ruer", "summary": "In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9404.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9404.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9404", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66827", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66845", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66875", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66859", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66867", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9404" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9404", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9404" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458904", "reference_id": "1458904", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458904" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9404" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nxqc-thj2-ruer" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102744?format=api", "vulnerability_id": "VCID-p4dr-ub7s-3ybv", "summary": "Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89353", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89372", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89373", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89371", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675", "reference_id": "706675", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=952158", "reference_id": "952158", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952158" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/1832-1/", "reference_id": "USN-1832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-1960" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p4dr-ub7s-3ybv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102812?format=api", "vulnerability_id": "VCID-pf7r-7sdb-ayfk", "summary": "An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17101.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17101.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67922", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67961", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67946", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67969", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67958", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631078", "reference_id": "1631078", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631078" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909037", "reference_id": "909037", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17101" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pf7r-7sdb-ayfk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102820?format=api", "vulnerability_id": "VCID-pfnv-dcqt-vygm", "summary": "Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the \"invertImage()\" function in the component \"tiffcrop\".", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19131.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19131.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19131", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68311", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68353", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68361", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68338", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19131" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19131", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19131" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004031", "reference_id": "2004031", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1810", "reference_id": "RHSA-2022:1810", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1810" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2020-19131" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pfnv-dcqt-vygm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4743?format=api", "vulnerability_id": "VCID-ph5n-1uzy-fffc", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3631.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3631.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3631", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.74249", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.74276", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.7428", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.74267", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.74243", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3631" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3631", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3631" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316872", "reference_id": "1316872", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316872" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820366", "reference_id": "820366", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820366" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3631" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ph5n-1uzy-fffc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4727?format=api", "vulnerability_id": "VCID-png5-4eam-k7e2", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5321.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5321.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00248", "scoring_system": "epss", "scoring_elements": "0.48295", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00261", "scoring_system": "epss", "scoring_elements": "0.49747", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00261", "scoring_system": "epss", "scoring_elements": "0.497", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00261", "scoring_system": "epss", "scoring_elements": "0.49729", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00261", "scoring_system": "epss", "scoring_elements": "0.49738", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346695", "reference_id": "1346695", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346695" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5321" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-png5-4eam-k7e2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44439?format=api", "vulnerability_id": "VCID-pnp2-whuf-w3d7", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0804.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0804.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05187", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05146", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05206", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05193", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05185", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/497", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/497" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170192", "reference_id": "2170192", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170192" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0804", "reference_id": "CVE-2023-0804", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0804" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0804.json", "reference_id": "CVE-2023-0804.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0804.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FBF3UUFSB6NB3NFTQSKOOIZGXJP3T34Z/", "reference_id": "FBF3UUFSB6NB3NFTQSKOOIZGXJP3T34Z", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FBF3UUFSB6NB3NFTQSKOOIZGXJP3T34Z/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230324-0009/", "reference_id": "ntap-20230324-0009", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230324-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0804" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pnp2-whuf-w3d7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102775?format=api", "vulnerability_id": "VCID-pxh4-v8pd-zbdg", "summary": "There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4.0.8 via a PlanarConfig=Contig image, which causes a more than one hundred bytes out-of-bounds write (related to the ZIPDecode function in tif_zip.c). A crafted input may lead to a remote denial of service attack or an arbitrary code execution attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11335.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11335.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80576", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80596", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80604", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.806", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80602", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1474356", "reference_id": "1474356", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1474356" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868513", "reference_id": "868513", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868513" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-11335" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pxh4-v8pd-zbdg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45374?format=api", "vulnerability_id": "VCID-q39u-5dd6-qyd2", "summary": "Out-of-bounds Write\nloadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26965.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26965.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26965", "reference_id": "", "reference_type": "", "scores": [ { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.0087", "published_at": "2026-06-04T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00876", "published_at": "2026-06-08T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00881", "published_at": "2026-06-05T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00879", "published_at": "2026-06-06T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00878", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26965" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/472", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/472" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215206", "reference_id": "2215206", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215206" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26965", "reference_id": "CVE-2023-26965", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26965" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230706-0009/", "reference_id": "ntap-20230706-0009", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230706-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2023-26965" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q39u-5dd6-qyd2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/54146?format=api", "vulnerability_id": "VCID-q4z8-y3dw-rfbc", "summary": "Improper Restriction of Operations within the Bounds of a Memory Buffer\nA heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff's TIFF2PDF tool. A specially crafted TIFF file can lead to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35524.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35524.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35524", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.65421", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.65472", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.6546", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.65483", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.65471", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35524" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932044", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932044" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35524", "reference_id": "CVE-2020-35524", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35524" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" }, { "reference_url": "https://usn.ubuntu.com/4755-1/", "reference_id": "USN-4755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4755-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35524" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q4z8-y3dw-rfbc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102752?format=api", "vulnerability_id": "VCID-q5g6-aa65-1yb1", "summary": "LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by failure of tif_next.c to verify that the BitsPerSample value is 2, and the t2p_sample_lab_signed_to_unsigned function in tiff2pdf.c.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81203", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81231", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81233", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.8123", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81227", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185815", "reference_id": "1185815", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185815" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-8129" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q5g6-aa65-1yb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3169?format=api", "vulnerability_id": "VCID-q9xq-fn2h-uqf2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31201", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31165", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31134", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31233", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/423" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122789", "reference_id": "2122789", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122789" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2519", "reference_id": "CVE-2022-2519", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2519" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q9xq-fn2h-uqf2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102756?format=api", "vulnerability_id": "VCID-qbnq-5kfz-pbez", "summary": "The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89252", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.8927", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190709", "reference_id": "1190709", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190709" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390", "reference_id": "777390", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2015-1547" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qbnq-5kfz-pbez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102800?format=api", "vulnerability_id": "VCID-qk9k-56ak-b7cm", "summary": "In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9936.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9936.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9936", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.90123", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.90135", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.90138", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.90136", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.90139", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9936" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469728", "reference_id": "1469728", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469728" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866113", "reference_id": "866113", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866113" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2706", "reference_id": "CVE-2017-9936", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2706" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42300.txt", "reference_id": "CVE-2017-9936", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42300.txt" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-9936" ], "risk_score": 6.0, "exploitability": "2.0", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qk9k-56ak-b7cm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4924?format=api", "vulnerability_id": "VCID-r2hy-dcn6-kfb8", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0908.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0908.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1387", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13751", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1379", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13834", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13865", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/383", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/383" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064145", "reference_id": "2064145", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064145" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0908", "reference_id": "CVE-2022-0908", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0908" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json", "reference_id": "CVE-2022-0908.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0908" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r2hy-dcn6-kfb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102778?format=api", "vulnerability_id": "VCID-r3kv-sfxj-7bgv", "summary": "There is a reachable assertion abort in the function TIFFWriteDirectoryTagSubifd() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13727.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13727.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70804", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70822", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70854", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70836", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70847", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488887", "reference_id": "1488887", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488887" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873879", "reference_id": "873879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873879" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-13727" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r3kv-sfxj-7bgv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4749?format=api", "vulnerability_id": "VCID-r6sa-34pz-cugr", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3620.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3620.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3620", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77468", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77457", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.7744", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77477", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3620" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316859", "reference_id": "1316859", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316859" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820363", "reference_id": "820363", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820363" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3620" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r6sa-34pz-cugr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4747?format=api", "vulnerability_id": "VCID-rarp-cytw-9yfq", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3622.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3622.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00906", "scoring_system": "epss", "scoring_elements": "0.76145", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00906", "scoring_system": "epss", "scoring_elements": "0.76162", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00906", "scoring_system": "epss", "scoring_elements": "0.76165", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00906", "scoring_system": "epss", "scoring_elements": "0.76157", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00906", "scoring_system": "epss", "scoring_elements": "0.76137", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324823", "reference_id": "1324823", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324823" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820365", "reference_id": "820365", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820365" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3622" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rarp-cytw-9yfq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44440?format=api", "vulnerability_id": "VCID-rben-hn5u-kqdh", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0798.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0798.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02066", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02082", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0209", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02079", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/492", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/492" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170157", "reference_id": "2170157", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170157" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0798", "reference_id": "CVE-2023-0798", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0798" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0798.json", "reference_id": "CVE-2023-0798.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0798.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0798" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rben-hn5u-kqdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3159?format=api", "vulnerability_id": "VCID-ryah-d2mj-vkha", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11929", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11849", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11934", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11809", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11891", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/398", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/398" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142740", "reference_id": "2142740", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142740" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3599", "reference_id": "CVE-2022-3599", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3599" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json", "reference_id": "CVE-2022-3599.JSON", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3599" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ryah-d2mj-vkha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4758?format=api", "vulnerability_id": "VCID-sccn-urtk-gbb6", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2596.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77358", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77357", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77348", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77329", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77368", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2596" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=610759", "reference_id": "610759", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=610759" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2010-2596" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sccn-urtk-gbb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4722?format=api", "vulnerability_id": "VCID-scuk-jnxs-sbfu", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6223.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6223.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.796", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.7959", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79573", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79605", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1356867", "reference_id": "1356867", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1356867" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842270", "reference_id": "842270", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842270" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-6223" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-scuk-jnxs-sbfu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102774?format=api", "vulnerability_id": "VCID-sfff-qfwq-gqhh", "summary": "In LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10688.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10688.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10688", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88298", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88277", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88296", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88299", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10688" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1470241", "reference_id": "1470241", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1470241" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866611", "reference_id": "866611", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866611" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2712", "reference_id": "CVE-2017-10688", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2712" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42299.txt", "reference_id": "CVE-2017-10688", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42299.txt" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-10688" ], "risk_score": 6.0, "exploitability": "2.0", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sfff-qfwq-gqhh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102813?format=api", "vulnerability_id": "VCID-t2x6-ux5m-aqgg", "summary": "The function t2p_write_pdf in tiff2pdf.c in LibTIFF 4.0.9 and earlier allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, a similar issue to CVE-2017-9935.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17795.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17795.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17795", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81608", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81638", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81633", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81639", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.8164", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17795" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1635091", "reference_id": "1635091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1635091" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17795" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t2x6-ux5m-aqgg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102819?format=api", "vulnerability_id": "VCID-t53k-td6e-v7av", "summary": "There exists one heap buffer overflow in _TIFFmemcpy in tif_unix.c in libtiff 4.0.10, which allows an attacker to cause a denial-of-service through a crafted tiff file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18768.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18768.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-18768", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09566", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09586", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09567", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09506", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09525", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-18768" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18768", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18768" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235458", "reference_id": "2235458", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235458" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2848", "reference_id": "show_bug.cgi?id=2848", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:35:49Z/" } ], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2848" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2020-18768" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t53k-td6e-v7av" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102764?format=api", "vulnerability_id": "VCID-t75t-ga23-9kf3", "summary": "Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10094.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10094.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74398", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.7443", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74405", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74434", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74422", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410119", "reference_id": "1410119", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410119" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10094" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t75t-ga23-9kf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4721?format=api", "vulnerability_id": "VCID-tht3-q94h-yya1", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9273.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9273.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00483", "scoring_system": "epss", "scoring_elements": "0.65648", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00483", "scoring_system": "epss", "scoring_elements": "0.65627", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00483", "scoring_system": "epss", "scoring_elements": "0.65584", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00483", "scoring_system": "epss", "scoring_elements": "0.65636", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00483", "scoring_system": "epss", "scoring_elements": "0.65637", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395164", "reference_id": "1395164", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395164" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844013", "reference_id": "844013", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844013" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9273" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tht3-q94h-yya1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102771?format=api", "vulnerability_id": "VCID-tqy8-1kes-m3ek", "summary": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to \"WRITE of size 2048\" and libtiff/tif_next.c:64:9.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10272.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10272.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65752", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65805", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65794", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65817", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65804", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438458", "reference_id": "1438458", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10272" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tqy8-1kes-m3ek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45518?format=api", "vulnerability_id": "VCID-trbp-mf1m-6kbm", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop cause heap-buffer-overflow and SEGV.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25433.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25433.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25433", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.08155", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.08136", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0819", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.08204", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.08187", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25433" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25433", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25433" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/520", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/520" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/467", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/467" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218744", "reference_id": "2218744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218744" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25433", "reference_id": "CVE-2023-25433", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25433" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:5079", "reference_id": "RHSA-2024:5079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:5079" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2023-25433" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-trbp-mf1m-6kbm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102810?format=api", "vulnerability_id": "VCID-tsw3-kjqm-kqeu", "summary": "A NULL pointer dereference in the function _TIFFmemcmp at tif_unix.c (called from TIFFWriteDirectoryTagTransferfunction) in LibTIFF 4.0.9 allows an attacker to cause a denial-of-service through a crafted tiff file. This vulnerability can be triggered by the executable tiffcp.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17000.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17000.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79303", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79329", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79317", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79335", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79327", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1630004", "reference_id": "1630004", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1630004" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908778", "reference_id": "908778", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908778" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17000" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tsw3-kjqm-kqeu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102811?format=api", "vulnerability_id": "VCID-tu3t-rdy1-eqa7", "summary": "An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in multiply_ms in tools/ppm2tiff.c, which can cause a denial of service (crash) or possibly have unspecified other impact via a crafted image file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17100.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17100.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53766", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53823", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53797", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53832", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5382", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631069", "reference_id": "1631069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631069" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909038", "reference_id": "909038", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17100" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tu3t-rdy1-eqa7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/64517?format=api", "vulnerability_id": "VCID-tx52-6u1t-77cm", "summary": "libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4775.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4775.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-4775", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.0988", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09978", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09994", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09965", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-4775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4775" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132632", "reference_id": "1132632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450768", "reference_id": "2450768", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450768" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1", "reference_id": "cpe:/a:redhat:hummingbird:1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2", "reference_id": "cpe:/o:redhat:enterprise_linux:10.2", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-4775", "reference_id": "CVE-2026-4775", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-4775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12265", "reference_id": "RHSA-2026:12265", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:12265" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12271", "reference_id": "RHSA-2026:12271", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:12271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:14929", "reference_id": "RHSA-2026:14929", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:14929" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:16055", "reference_id": "RHSA-2026:16055", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:16055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19150", "reference_id": "RHSA-2026:19150", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19363", "reference_id": "RHSA-2026:19363", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19363" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19585", "reference_id": "RHSA-2026:19585", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19586", "reference_id": "RHSA-2026:19586", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19586" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19604", "reference_id": "RHSA-2026:19604", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19604" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19608", "reference_id": "RHSA-2026:19608", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19608" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19609", "reference_id": "RHSA-2026:19609", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19609" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19657", "reference_id": "RHSA-2026:19657", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19657" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19659", "reference_id": "RHSA-2026:19659", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19659" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19702", "reference_id": "RHSA-2026:19702", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19702" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20583", "reference_id": "RHSA-2026:20583", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20585", "reference_id": "RHSA-2026:20585", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20591", "reference_id": "RHSA-2026:20591", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20591" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20592", "reference_id": "RHSA-2026:20592", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20592" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2026-4775" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tx52-6u1t-77cm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44443?format=api", "vulnerability_id": "VCID-tynz-dfpk-6kgb", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0803.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0803.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07847", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07823", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07881", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07894", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07867", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/501", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/501" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170187", "reference_id": "2170187", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170187" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0803", "reference_id": "CVE-2023-0803", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0803" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0803.json", "reference_id": "CVE-2023-0803.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0803.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0803" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tynz-dfpk-6kgb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102799?format=api", "vulnerability_id": "VCID-ufhw-4wuz-cfe2", "summary": "In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/tif_dirread.c mishandles a malloc operation, which allows attackers to cause a denial of service (memory leak within the function _TIFFmalloc in tif_unix.c) via a crafted file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9815.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9815.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9815", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64766", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64796", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64818", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64807", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64808", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9815" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1464449", "reference_id": "1464449", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1464449" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9815" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ufhw-4wuz-cfe2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4925?format=api", "vulnerability_id": "VCID-ugr8-526g-5uhc", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0907.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0907.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43018", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42959", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42935", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42995", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43009", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/392", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/392" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/314" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064143", "reference_id": "2064143", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064143" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0907", "reference_id": "CVE-2022-0907", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0907" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0907.json", "reference_id": "CVE-2022-0907.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0907.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0907" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ugr8-526g-5uhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4738?format=api", "vulnerability_id": "VCID-um8a-bvjq-abgy", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3945.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3945.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.3643", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36358", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36328", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36394", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36421", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325093", "reference_id": "1325093", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325093" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-4/", "reference_id": "USN-3212-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3945" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-um8a-bvjq-abgy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6221?format=api", "vulnerability_id": "VCID-uran-x628-rffb", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10779.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10779.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10779", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66767", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66737", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66719", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66753", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.6676", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577311", "reference_id": "1577311", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577311" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898359", "reference_id": "898359", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898359" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-816", "reference_id": "AVG-816", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2018-10779" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uran-x628-rffb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4724?format=api", "vulnerability_id": "VCID-uscn-2nfg-mqay", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5652.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5652.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03829", "scoring_system": "epss", "scoring_elements": "0.88369", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.03829", "scoring_system": "epss", "scoring_elements": "0.8837", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.03829", "scoring_system": "epss", "scoring_elements": "0.88351", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03829", "scoring_system": "epss", "scoring_elements": "0.88371", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389222", "reference_id": "1389222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389222" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842361", "reference_id": "842361", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842361" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5652" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uscn-2nfg-mqay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45436?format=api", "vulnerability_id": "VCID-utc5-s51e-wygd", "summary": "NULL Pointer Dereference\nA NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3316.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3316.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3316", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06591", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06644", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06633", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3316" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216080", "reference_id": "2216080", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216080" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/468", "reference_id": "468", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/468" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/515", "reference_id": "515", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/515" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3316", "reference_id": "CVE-2023-3316", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3316" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2023-3316" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-utc5-s51e-wygd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102788?format=api", "vulnerability_id": "VCID-vaas-sjrq-8bch", "summary": "LibTIFF 4.0.7 has an \"outside the range of representable values of type float\" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43393", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43368", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43441", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43451", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.43427", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441250", "reference_id": "1441250", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441250" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7596" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vaas-sjrq-8bch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102784?format=api", "vulnerability_id": "VCID-vpcf-pnzv-1bgy", "summary": "The putagreytile function in tif_getimage.c in LibTIFF 4.0.7 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7592.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7592.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42117", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42095", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.4217", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.4218", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42153", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441240", "reference_id": "1441240", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441240" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859998", "reference_id": "859998", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859998" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7592" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vpcf-pnzv-1bgy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3160?format=api", "vulnerability_id": "VCID-vzty-mrqp-nbam", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08604", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08573", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08625", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08556", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08608", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/413", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/413" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142736", "reference_id": "2142736", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142736" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3597", "reference_id": "CVE-2022-3597", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3597" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json", "reference_id": "CVE-2022-3597.JSON", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3597" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vzty-mrqp-nbam" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102787?format=api", "vulnerability_id": "VCID-wbht-h92n-dkdu", "summary": "The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48935", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48984", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48966", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48913", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48974", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441248", "reference_id": "1441248", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441248" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860003", "reference_id": "860003", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860003" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7595" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wbht-h92n-dkdu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4707?format=api", "vulnerability_id": "VCID-wbmf-tw8n-1ucj", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10095.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10095.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10095", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73123", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73092", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73079", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73105", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73117", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10095" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410063", "reference_id": "1410063", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410063" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850316", "reference_id": "850316", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850316" }, { "reference_url": "https://security.archlinux.org/ASA-201707-17", "reference_id": "ASA-201707-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-17" }, { "reference_url": "https://security.archlinux.org/ASA-201707-18", "reference_id": "ASA-201707-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-18" }, { "reference_url": "https://security.archlinux.org/AVG-5", "reference_id": "AVG-5", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-5" }, { "reference_url": "https://security.archlinux.org/AVG-87", "reference_id": "AVG-87", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-87" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10095" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wbmf-tw8n-1ucj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102770?format=api", "vulnerability_id": "VCID-wbqh-dpwk-pfgd", "summary": "tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 1\" and libtiff/tif_fax3.c:413:13.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10271.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10271.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62226", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62275", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62256", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62282", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62272", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438453", "reference_id": "1438453", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438453" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10271" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wbqh-dpwk-pfgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102783?format=api", "vulnerability_id": "VCID-wvp7-k93h-6ubw", "summary": "LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read in tif_lzw.c resulting in DoS or code execution via a crafted bmp image to tools/bmp2tiff.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5563.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5563.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5563", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58027", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58079", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58062", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58087", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58076", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5563" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416109", "reference_id": "1416109", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416109" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-5563" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wvp7-k93h-6ubw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4922?format=api", "vulnerability_id": "VCID-wxte-z2qm-xues", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0924.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0924.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21755", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21652", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21688", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.2171", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21766", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/278", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/278" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/311" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064148", "reference_id": "2064148", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064148" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0924", "reference_id": "CVE-2022-0924", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0924" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0924.json", "reference_id": "CVE-2022-0924.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0924.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0924" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wxte-z2qm-xues" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6208?format=api", "vulnerability_id": "VCID-wyae-x32v-ckb8", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18013.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18013.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00284", "scoring_system": "epss", "scoring_elements": "0.52051", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00284", "scoring_system": "epss", "scoring_elements": "0.51999", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00284", "scoring_system": "epss", "scoring_elements": "0.51981", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00284", "scoring_system": "epss", "scoring_elements": "0.52031", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00284", "scoring_system": "epss", "scoring_elements": "0.52042", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530440", "reference_id": "1530440", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530440" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885985", "reference_id": "885985", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885985" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-18013" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wyae-x32v-ckb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102777?format=api", "vulnerability_id": "VCID-x3j5-e33g-fqea", "summary": "There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13726.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13726.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70944", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70927", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70969", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70976", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70959", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488886", "reference_id": "1488886", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488886" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873880", "reference_id": "873880", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873880" }, { "reference_url": "https://security.archlinux.org/AVG-814", "reference_id": "AVG-814", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-814" }, { "reference_url": "https://security.archlinux.org/AVG-815", "reference_id": "AVG-815", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-815" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-13726" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x3j5-e33g-fqea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102761?format=api", "vulnerability_id": "VCID-x4td-c35s-tkgw", "summary": "Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service (heap-based buffer over-read), or possibly obtain sensitive information from process memory, via crafted width and length values in RLE4 or RLE8 data in a BMP file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8870.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8870.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8870", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73329", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73365", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73344", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73371", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73356", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8870" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8870", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8870" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402778", "reference_id": "1402778", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402778" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2015-8870" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x4td-c35s-tkgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102557?format=api", "vulnerability_id": "VCID-x5kg-eg4a-7bdc", "summary": "libtiff: out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3598.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12849", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.1281", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12931", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12934", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12895", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/435", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/435" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142738", "reference_id": "2142738", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142738" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3598", "reference_id": "CVE-2022-3598", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3598" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json", "reference_id": "CVE-2022-3598.JSON", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5705-1/", "reference_id": "USN-5705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5705-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3598" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x5kg-eg4a-7bdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6222?format=api", "vulnerability_id": "VCID-xstr-45ms-4qe6", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9935.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9935.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65731", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65755", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65691", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65744", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65742", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9935" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469725", "reference_id": "1469725", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469725" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866109", "reference_id": "866109", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866109" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-9935" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xstr-45ms-4qe6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102776?format=api", "vulnerability_id": "VCID-xtt1-8er5-y7dh", "summary": "The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation for short files, which allows remote attackers to cause a denial of service (allocation failure and application crash) in the TIFFFetchStripThing function in tif_dirread.c during a tiff2pdf invocation.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12944.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12944.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.73288", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.73304", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.7333", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.73317", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.73325", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1487202", "reference_id": "1487202", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1487202" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872607", "reference_id": "872607", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872607" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-12944" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xtt1-8er5-y7dh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102793?format=api", "vulnerability_id": "VCID-y1ub-vfy9-7ygt", "summary": "LibTIFF 4.0.7 has a \"shift exponent too large for 64-bit type long\" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52123", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52104", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52164", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52173", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00285", "scoring_system": "epss", "scoring_elements": "0.52153", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441261", "reference_id": "1441261", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441261" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7601" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y1ub-vfy9-7ygt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/45513?format=api", "vulnerability_id": "VCID-y3yu-p8ng-buhc", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26966.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26966.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26966", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08895", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08886", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08936", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08953", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08933", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26966" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/530", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/530" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/473", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/473" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218749", "reference_id": "2218749", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218749" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26966", "reference_id": "CVE-2023-26966", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26966" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196280?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" } ], "aliases": [ "CVE-2023-26966" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y3yu-p8ng-buhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102797?format=api", "vulnerability_id": "VCID-y6s6-ubu5-dbad", "summary": "In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows attackers to cause a denial of service via a crafted file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9403.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9403.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9403", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66827", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66845", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66875", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66859", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66867", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9403" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9403", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9403" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458902", "reference_id": "1458902", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458902" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9403" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y6s6-ubu5-dbad" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102755?format=api", "vulnerability_id": "VCID-ybp6-nrjt-7bdk", "summary": "The (1) putcontig8bitYCbCr21tile function in tif_getimage.c or (2) NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff-cvs-1.tif and libtiff-cvs-2.tif.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78433", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78461", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78469", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78459", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78447", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190703", "reference_id": "1190703", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190703" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390", "reference_id": "777390", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-9655" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ybp6-nrjt-7bdk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3162?format=api", "vulnerability_id": "VCID-yekv-pd53-nfgw", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00171", "scoring_system": "epss", "scoring_elements": "0.38055", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00171", "scoring_system": "epss", "scoring_elements": "0.38088", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00171", "scoring_system": "epss", "scoring_elements": "0.38149", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00171", "scoring_system": "epss", "scoring_elements": "0.38121", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00171", "scoring_system": "epss", "scoring_elements": "0.38146", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/433", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/433" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112756", "reference_id": "2112756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112756" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34526", "reference_id": "CVE-2022-34526", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34526" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-34526" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yekv-pd53-nfgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44434?format=api", "vulnerability_id": "VCID-yfgk-2pdu-w3gc", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0796.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0796.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02066", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02082", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0209", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02079", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/499", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/499" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170146", "reference_id": "2170146", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170146" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0796", "reference_id": "CVE-2023-0796", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0796" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0796.json", "reference_id": "CVE-2023-0796.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0796.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/196279?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qdp-vzrd-uqgc" }, { "vulnerability": "VCID-5zvp-ysut-juep" }, { "vulnerability": "VCID-6hf4-rc1a-pbg6" }, { "vulnerability": "VCID-6v96-k8cs-13f7" }, { "vulnerability": "VCID-92dt-g6m8-fufk" }, { "vulnerability": "VCID-anfx-xj8v-kfg8" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-c7nt-5d64-kkev" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d52s-g5c7-qka3" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-fbks-9s7e-wfcj" }, { "vulnerability": "VCID-gyvd-4m8g-jkdu" }, { "vulnerability": "VCID-hhgz-j76b-k7d4" }, { "vulnerability": "VCID-kxdc-8rht-vfdy" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n3p5-9ykg-sufd" }, { "vulnerability": "VCID-nwgs-pqj7-xkbs" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-su9v-ewt3-6ua8" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-xg35-8jbc-wqa4" }, { "vulnerability": "VCID-xms6-c2j7-hfh8" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0796" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yfgk-2pdu-w3gc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102750?format=api", "vulnerability_id": "VCID-yjke-vqxv-8bgu", "summary": "The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71212", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71255", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71262", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71242", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71226", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4244" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=996468", "reference_id": "996468", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=996468" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4244" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yjke-vqxv-8bgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102766?format=api", "vulnerability_id": "VCID-yv81-wmmc-hqgx", "summary": "LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10267.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10267.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44674", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44744", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44698", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44751", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44729", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438449", "reference_id": "1438449", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438449" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10267" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yv81-wmmc-hqgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4731?format=api", "vulnerability_id": "VCID-z3mf-7y22-q7bz", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5317.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5317.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00518", "scoring_system": "epss", "scoring_elements": "0.67098", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00518", "scoring_system": "epss", "scoring_elements": "0.67123", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00518", "scoring_system": "epss", "scoring_elements": "0.67131", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00518", "scoring_system": "epss", "scoring_elements": "0.67115", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00518", "scoring_system": "epss", "scoring_elements": "0.67082", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346689", "reference_id": "1346689", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346689" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5317" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z3mf-7y22-q7bz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4725?format=api", "vulnerability_id": "VCID-z677-7ega-8khj", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5323.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5323.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00665", "scoring_system": "epss", "scoring_elements": "0.71649", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00665", "scoring_system": "epss", "scoring_elements": "0.7161", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00665", "scoring_system": "epss", "scoring_elements": "0.71598", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00665", "scoring_system": "epss", "scoring_elements": "0.71625", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00665", "scoring_system": "epss", "scoring_elements": "0.71642", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346696", "reference_id": "1346696", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346696" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5323" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z677-7ega-8khj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102796?format=api", "vulnerability_id": "VCID-z6je-fvue-jbg8", "summary": "LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in tif_dir.c, which might allow remote attackers to cause a denial of service (crash) via a crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9147.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9147.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9147", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02824", "scoring_system": "epss", "scoring_elements": "0.86434", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02824", "scoring_system": "epss", "scoring_elements": "0.86441", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02824", "scoring_system": "epss", "scoring_elements": "0.86458", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02824", "scoring_system": "epss", "scoring_elements": "0.86454", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02824", "scoring_system": "epss", "scoring_elements": "0.86457", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9147" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9147", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9147" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1454655", "reference_id": "1454655", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1454655" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863185", "reference_id": "863185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863185" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2693", "reference_id": "CVE-2017-9147", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2693" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42301.txt", "reference_id": "CVE-2017-9147", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42301.txt" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9147" ], "risk_score": 6.0, "exploitability": "2.0", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6je-fvue-jbg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4712?format=api", "vulnerability_id": "VCID-z6yx-cgpy-cqax", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9537.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9537.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62089", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62115", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62103", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62059", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.62108", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397760", "reference_id": "1397760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397760" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9537" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6yx-cgpy-cqax" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4739?format=api", "vulnerability_id": "VCID-zhm8-29qs-jufd", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3658.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3658.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00898", "scoring_system": "epss", "scoring_elements": "0.76048", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00898", "scoring_system": "epss", "scoring_elements": "0.76027", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00898", "scoring_system": "epss", "scoring_elements": "0.76023", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00898", "scoring_system": "epss", "scoring_elements": "0.7604", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326257", "reference_id": "1326257", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326257" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3658" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zhm8-29qs-jufd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102762?format=api", "vulnerability_id": "VCID-zjvv-t6ep-mkcf", "summary": "Heap-based buffer overflow in the readContigStripsIntoBuffer function in tif_unix.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5 and 4.0.6 allows remote attackers to have unspecified impact via a crafted image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10092.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10092.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.85099", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.85124", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.85112", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.85128", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.85122", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410067", "reference_id": "1410067", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410067" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10092" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjvv-t6ep-mkcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102818?format=api", "vulnerability_id": "VCID-zm7g-5yf7-tyc6", "summary": "An Invalid Address dereference was discovered in TIFFWriteDirectoryTagTransferfunction in libtiff/tif_dirwrite.c in LibTIFF 4.0.10, affecting the cpSeparateBufToContigBuf function in tiffcp.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted tiff file. This is different from CVE-2018-12900.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7663.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7663.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00547", "scoring_system": "epss", "scoring_elements": "0.68194", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00547", "scoring_system": "epss", "scoring_elements": "0.68233", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00547", "scoring_system": "epss", "scoring_elements": "0.68241", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00547", "scoring_system": "epss", "scoring_elements": "0.68218", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-7663" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1677528", "reference_id": "1677528", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1677528" }, { "reference_url": "https://security.archlinux.org/ASA-201911-13", "reference_id": "ASA-201911-13", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201911-13" }, { "reference_url": "https://security.archlinux.org/AVG-886", "reference_id": "AVG-886", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-886" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-7663" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zm7g-5yf7-tyc6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102749?format=api", "vulnerability_id": "VCID-zmv8-tbdx-7bce", "summary": "Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4243", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95415", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95418", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.9542", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4243" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917", "reference_id": "742917", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=996052", "reference_id": "996052", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=996052" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4243" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zmv8-tbdx-7bce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4726?format=api", "vulnerability_id": "VCID-znt9-r8xc-bbek", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5322.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5322.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.3933", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39384", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39388", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.3936", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39295", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346683", "reference_id": "1346683", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346683" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5322" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-znt9-r8xc-bbek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102767?format=api", "vulnerability_id": "VCID-zq3e-3wzu-d3eh", "summary": "tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 78490\" and libtiff/tif_unix.c:115:23.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10268.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00194", "scoring_system": "epss", "scoring_elements": "0.4111", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00194", "scoring_system": "epss", "scoring_elements": "0.41185", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00194", "scoring_system": "epss", "scoring_elements": "0.41127", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00194", "scoring_system": "epss", "scoring_elements": "0.41189", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00194", "scoring_system": "epss", "scoring_elements": "0.41158", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10268" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438447", "reference_id": "1438447", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438447" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10268" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zq3e-3wzu-d3eh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6207?format=api", "vulnerability_id": "VCID-zw8d-7hse-1fe1", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10963.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10963.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.33953", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.3402", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.33987", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.33903", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00141", "scoring_system": "epss", "scoring_elements": "0.34005", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1579058", "reference_id": "1579058", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1579058" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898348", "reference_id": "898348", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898348" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5225?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-10963" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zw8d-7hse-1fe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4757?format=api", "vulnerability_id": "VCID-zxv1-87z1-hkbr", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78358", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.7838", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.7837", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78345", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78371", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185805", "reference_id": "1185805", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185805" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2014-8127" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zxv1-87z1-hkbr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4737?format=api", "vulnerability_id": "VCID-zzch-261b-3ua1", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3990.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3990.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63728", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63708", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63679", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.6372", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63721", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326246", "reference_id": "1326246", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326246" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836570", "reference_id": "836570", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836570" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3990" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zzch-261b-3ua1" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102758?format=api", "vulnerability_id": "VCID-2fkp-y8v2-hqck", "summary": "tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds writes) via a crafted TIFF image, a different vulnerability than CVE-2015-8781.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.7791", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77938", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77944", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77935", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01053", "scoring_system": "epss", "scoring_elements": "0.77924", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8782" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2fkp-y8v2-hqck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102734?format=api", "vulnerability_id": "VCID-5xej-h5pw-f7hf", "summary": "Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1167.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1167.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1167", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90414", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90428", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90426", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90424", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1167" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=619614", "reference_id": "619614", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=619614" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=684939", "reference_id": "684939", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684939" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0392", "reference_id": "RHSA-2011:0392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0392" }, { "reference_url": "https://usn.ubuntu.com/1102-1/", "reference_id": "USN-1102-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1102-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2011-1167" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5xej-h5pw-f7hf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102741?format=api", "vulnerability_id": "VCID-67tc-akwj-m7et", "summary": "ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PPM image that triggers an integer overflow, a zero-memory allocation, and a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4564.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4564.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4564", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96482", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96486", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96491", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96492", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4564" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692345", "reference_id": "692345", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692345" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=871700", "reference_id": "871700", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=871700" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1631-1/", "reference_id": "USN-1631-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1631-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-4564" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-67tc-akwj-m7et" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102733?format=api", "vulnerability_id": "VCID-76z6-kfju-xfee", "summary": "Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF Internet Fax image file that has been compressed using CCITT Group 4 encoding, related to the EXPAND2D macro in libtiff/tif_fax3.h. NOTE: some of these details are obtained from third party information.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0192.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0192.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0192", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07394", "scoring_system": "epss", "scoring_elements": "0.91879", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92927", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92937", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92934", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92929", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0192" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0192", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0192" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=678635", "reference_id": "678635", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=678635" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0318", "reference_id": "RHSA-2011:0318", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0318" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2011-0192" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-76z6-kfju-xfee" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102742?format=api", "vulnerability_id": "VCID-7js7-qg73-fudp", "summary": "Stack-based buffer overflow in tif_dir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5581.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5581.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-5581", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.82295", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.82324", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.82323", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03784", "scoring_system": "epss", "scoring_elements": "0.88293", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.03784", "scoring_system": "epss", "scoring_elements": "0.88294", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-5581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5581" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694693", "reference_id": "694693", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694693" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=867235", "reference_id": "867235", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867235" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1655-1/", "reference_id": "USN-1655-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1655-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-5581" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7js7-qg73-fudp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102759?format=api", "vulnerability_id": "VCID-9ufr-s5hf-j3bg", "summary": "tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds reads) via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.6355", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63592", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63599", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.6359", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63579", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8783" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9ufr-s5hf-j3bg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4752?format=api", "vulnerability_id": "VCID-bmhd-pxe4-5kg3", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43195", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43139", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43112", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43174", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43186", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294427", "reference_id": "1294427", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294427" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021", "reference_id": "809021", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8683" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bmhd-pxe4-5kg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102746?format=api", "vulnerability_id": "VCID-e2fw-bbeg-3qby", "summary": "Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length and resolution in a TIFF image file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83439", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83464", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83465", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83461", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83453", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674", "reference_id": "706674", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=952131", "reference_id": "952131", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952131" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/1832-1/", "reference_id": "USN-1832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-1961" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e2fw-bbeg-3qby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102747?format=api", "vulnerability_id": "VCID-faz2-7zdq-w3fb", "summary": "Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) extension block in a GIF image or (2) GIF raster image to tools/gif2tiff.c or (3) a long filename for a TIFF image to tools/rgb2ycbcr.c. NOTE: vectors 1 and 3 are disputed by Red Hat, which states that the input cannot exceed the allocated buffer size.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95353", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.9536", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95363", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95365", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303", "reference_id": "719303", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=995965", "reference_id": "995965", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=995965" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4231" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-faz2-7zdq-w3fb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102739?format=api", "vulnerability_id": "VCID-fv9j-cd1t-jbd3", "summary": "The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 and earlier does not properly initialize the T2P context struct pointer in certain error conditions, which allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3401.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3401.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3401", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00817", "scoring_system": "epss", "scoring_elements": "0.74731", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00817", "scoring_system": "epss", "scoring_elements": "0.74714", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.76295", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.76323", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.76325", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3401" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3401", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3401" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=682115", "reference_id": "682115", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=682115" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=837577", "reference_id": "837577", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=837577" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1511-1/", "reference_id": "USN-1511-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1511-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-3401" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fv9j-cd1t-jbd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102757?format=api", "vulnerability_id": "VCID-gnkb-u976-3qaw", "summary": "tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds write) via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80906", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80935", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80931", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80937", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01417", "scoring_system": "epss", "scoring_elements": "0.80934", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8781" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gnkb-u976-3qaw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102751?format=api", "vulnerability_id": "VCID-hac2-vcxa-cffp", "summary": "LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77278", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77307", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77318", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77298", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185812", "reference_id": "1185812", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185812" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-8128" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hac2-vcxa-cffp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102724?format=api", "vulnerability_id": "VCID-hzgv-brm9-akdh", "summary": "The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ImageMagick, does not properly handle invalid ReferenceBlackWhite values, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers an array index error, related to \"downsampled OJPEG input.\"", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2595.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82908", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82934", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82931", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82923", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2595" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=610684", "reference_id": "610684", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=610684" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0519", "reference_id": "RHSA-2010:0519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0519" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2010-2595" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hzgv-brm9-akdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102748?format=api", "vulnerability_id": "VCID-j7gx-b3sq-hqap", "summary": "Use-after-free vulnerability in the t2p_readwrite_pdf_image function in tools/tiff2pdf.c in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80287", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80312", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80315", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80311", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80304", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303", "reference_id": "719303", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=995975", "reference_id": "995975", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=995975" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4232" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j7gx-b3sq-hqap" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102725?format=api", "vulnerability_id": "VCID-jpv7-hgwm-pyh9", "summary": "The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image, related to \"downsampled OJPEG input\" and possibly related to a compiler optimization that triggers a divide-by-zero error.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2597.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.81051", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.81079", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.81083", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.8108", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.81075", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2597" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=610776", "reference_id": "610776", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=610776" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0519", "reference_id": "RHSA-2010:0519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0519" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2010-2597" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jpv7-hgwm-pyh9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4754?format=api", "vulnerability_id": "VCID-kucf-4yqt-3fbg", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43306", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43248", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43224", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43282", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43297", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294444", "reference_id": "1294444", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294444" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968", "reference_id": "808968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8665" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kucf-4yqt-3fbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102753?format=api", "vulnerability_id": "VCID-m2ga-kxun-8qf3", "summary": "Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80431", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80456", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80458", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80455", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.8045", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177893", "reference_id": "1177893", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177893" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987", "reference_id": "773987", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-9330" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m2ga-kxun-8qf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102728?format=api", "vulnerability_id": "VCID-mx92-rrxt-4qgs", "summary": "The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2630.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2630.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2630", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88546", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88564", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88566", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88565", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2630" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2630" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=611886", "reference_id": "611886", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=611886" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34278.txt", "reference_id": "CVE-2010-2630;OSVDB-66089", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34278.txt" }, { "reference_url": "https://www.securityfocus.com/bid/41475/info", "reference_id": "CVE-2010-2630;OSVDB-66089", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/41475/info" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2010-2630" ], "risk_score": null, "exploitability": "2.0", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mx92-rrxt-4qgs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102760?format=api", "vulnerability_id": "VCID-nezb-t4bq-jbav", "summary": "The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.75993", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.76018", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.7601", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00896", "scoring_system": "epss", "scoring_elements": "0.75996", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301652", "reference_id": "1301652", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301652" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4152?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8784" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nezb-t4bq-jbav" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102744?format=api", "vulnerability_id": "VCID-p4dr-ub7s-3ybv", "summary": "Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89353", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89372", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89373", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89371", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675", "reference_id": "706675", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=952158", "reference_id": "952158", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952158" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/1832-1/", "reference_id": "USN-1832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-1960" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p4dr-ub7s-3ybv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102752?format=api", "vulnerability_id": "VCID-q5g6-aa65-1yb1", "summary": "LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by failure of tif_next.c to verify that the BitsPerSample value is 2, and the t2p_sample_lab_signed_to_unsigned function in tiff2pdf.c.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81203", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81231", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81233", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.8123", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.81227", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185815", "reference_id": "1185815", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185815" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-8129" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q5g6-aa65-1yb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102756?format=api", "vulnerability_id": "VCID-qbnq-5kfz-pbez", "summary": "The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89252", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.8927", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190709", "reference_id": "1190709", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190709" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390", "reference_id": "777390", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2015-1547" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qbnq-5kfz-pbez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102738?format=api", "vulnerability_id": "VCID-sdda-nfpd-wkeq", "summary": "Multiple integer overflows in tiff2pdf in libtiff before 4.0.2 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2113.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2113.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2113", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.79003", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.7903", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.79036", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.79027", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.79015", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2113" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2113", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2113" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140", "reference_id": "678140", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=810551", "reference_id": "810551", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=810551" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1054", "reference_id": "RHSA-2012:1054", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1054" }, { "reference_url": "https://usn.ubuntu.com/1498-1/", "reference_id": "USN-1498-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1498-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-2113" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sdda-nfpd-wkeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102715?format=api", "vulnerability_id": "VCID-sszm-sw4b-sufy", "summary": "Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5022.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5022.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-5022", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.95032", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.9504", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.95042", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.95044", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-5022" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5022", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5022" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624287", "reference_id": "624287", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624287" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=695885", "reference_id": "695885", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695885" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/22681.txt", "reference_id": "CVE-2009-5022;OSVDB-72260", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/22681.txt" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0452", "reference_id": "RHSA-2011:0452", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0452" }, { "reference_url": "https://usn.ubuntu.com/1120-1/", "reference_id": "USN-1120-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1120-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2009-5022" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sszm-sw4b-sufy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102736?format=api", "vulnerability_id": "VCID-u6j2-a2em-u3dv", "summary": "Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1173.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1173.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-1173", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91514", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91527", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91529", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91526", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91523", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-1173" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1173", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1173" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=803078", "reference_id": "803078", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=803078" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0468", "reference_id": "RHSA-2012:0468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0468" }, { "reference_url": "https://usn.ubuntu.com/1416-1/", "reference_id": "USN-1416-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1416-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-1173" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u6j2-a2em-u3dv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102737?format=api", "vulnerability_id": "VCID-vpnh-b4rq-wqhy", "summary": "Integer signedness error in the TIFFReadDirectory function in tif_dirread.c in libtiff 3.9.4 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a negative tile depth in a tiff image, which triggers an improper conversion between signed and unsigned types, leading to a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2088.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2088.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86777", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86799", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86797", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86793", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86783", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2088" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2088", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2088" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140", "reference_id": "678140", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=832864", "reference_id": "832864", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=832864" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1054", "reference_id": "RHSA-2012:1054", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1054" }, { "reference_url": "https://usn.ubuntu.com/1498-1/", "reference_id": "USN-1498-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1498-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-2088" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vpnh-b4rq-wqhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102755?format=api", "vulnerability_id": "VCID-ybp6-nrjt-7bdk", "summary": "The (1) putcontig8bitYCbCr21tile function in tif_getimage.c or (2) NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff-cvs-1.tif and libtiff-cvs-2.tif.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78433", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78461", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78469", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78459", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78447", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190703", "reference_id": "1190703", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190703" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390", "reference_id": "777390", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-9655" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ybp6-nrjt-7bdk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102750?format=api", "vulnerability_id": "VCID-yjke-vqxv-8bgu", "summary": "The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71212", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71255", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71262", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71242", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.71226", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4244" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=996468", "reference_id": "996468", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=996468" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4244" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yjke-vqxv-8bgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102740?format=api", "vulnerability_id": "VCID-zjd6-e89g-2ygc", "summary": "Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4447.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4447.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.79161", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.79187", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.79193", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.79184", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.79174", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4447" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4447", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4447" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688944", "reference_id": "688944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688944" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=860198", "reference_id": "860198", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860198" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1631-1/", "reference_id": "USN-1631-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1631-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-4447" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjd6-e89g-2ygc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/102749?format=api", "vulnerability_id": "VCID-zmv8-tbdx-7bce", "summary": "Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4243", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95415", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95418", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.9542", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4243" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917", "reference_id": "742917", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=996052", "reference_id": "996052", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=996052" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4151?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4243" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zmv8-tbdx-7bce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4757?format=api", "vulnerability_id": "VCID-zxv1-87z1-hkbr", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78358", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.7838", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.7837", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78345", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78371", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185805", "reference_id": "1185805", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185805" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4066?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13fq-85pm-9ucx" }, { "vulnerability": "VCID-19y7-v51n-pfa5" }, { "vulnerability": "VCID-24bg-v8c6-q3f6" }, { "vulnerability": "VCID-29an-d9j1-subv" }, { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2fkp-y8v2-hqck" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-346w-g3br-qyfj" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3hc7-p5t2-vuht" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4gq3-smes-y3ej" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-5bpk-63mp-myea" }, { "vulnerability": "VCID-5pcg-xe5q-1qdt" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6f7j-jffy-g3h1" }, { "vulnerability": "VCID-6j88-9v6m-aqaa" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-8t9a-wr15-s3gj" }, { "vulnerability": "VCID-98hw-rjd6-p3ab" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9tzh-51wj-u3g9" }, { "vulnerability": "VCID-9ufr-s5hf-j3bg" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-ajjg-j3u3-87hb" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-aqsc-pckt-8kb6" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bg9z-zm7j-8kdh" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-bmhd-pxe4-5kg3" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canh-syw2-zyeq" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d1v8-kg4j-ayek" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dbtw-xgms-g7a1" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-dh4d-qkhm-pkha" }, { "vulnerability": "VCID-dyvz-88n7-aug5" }, { "vulnerability": "VCID-e2f7-aptp-8fdu" }, { "vulnerability": "VCID-e2fw-bbeg-3qby" }, { "vulnerability": "VCID-eane-ev3e-93d3" }, { "vulnerability": "VCID-eaxr-tudk-jfff" }, { "vulnerability": "VCID-ebpy-1xg8-kfhm" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-enmp-vfzt-ubdn" }, { "vulnerability": "VCID-evq9-mjww-1qdk" }, { "vulnerability": "VCID-eys7-uqtb-k3hf" }, { "vulnerability": "VCID-f79u-ccnn-fkb2" }, { "vulnerability": "VCID-f9ny-geg2-ebdy" }, { "vulnerability": "VCID-faz2-7zdq-w3fb" }, { "vulnerability": "VCID-ffbw-vews-n7h3" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gnkb-u976-3qaw" }, { "vulnerability": "VCID-gpud-pv1v-67c1" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-gqad-j76g-tyg5" }, { "vulnerability": "VCID-gr1x-z5t8-j3eh" }, { "vulnerability": "VCID-h17a-js2a-x7dh" }, { "vulnerability": "VCID-h9nx-bv3h-dyev" }, { "vulnerability": "VCID-hac2-vcxa-cffp" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hep7-wa9u-ybbb" }, { "vulnerability": "VCID-hv4a-w9rs-4fg4" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-j7gx-b3sq-hqap" }, { "vulnerability": "VCID-j812-5e7u-77gj" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-jpk4-8v2b-tkd3" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-k5c9-5xnv-57f7" }, { "vulnerability": "VCID-kaj7-scpx-87dc" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kucf-4yqt-3fbg" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-m2ga-kxun-8qf3" }, { "vulnerability": "VCID-ma1y-1jua-3bhz" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-mn4b-21cd-k3eh" }, { "vulnerability": "VCID-mzhm-ecrs-aqaq" }, { "vulnerability": "VCID-n1yd-y1ur-cqgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nezb-t4bq-jbav" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nubb-rk2q-z3de" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-nxqc-thj2-ruer" }, { "vulnerability": "VCID-p4dr-ub7s-3ybv" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-ph5n-1uzy-fffc" }, { "vulnerability": "VCID-png5-4eam-k7e2" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q5g6-aa65-1yb1" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qbnq-5kfz-pbez" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-r6sa-34pz-cugr" }, { "vulnerability": "VCID-rarp-cytw-9yfq" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sccn-urtk-gbb6" }, { "vulnerability": "VCID-scuk-jnxs-sbfu" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-t75t-ga23-9kf3" }, { "vulnerability": "VCID-tht3-q94h-yya1" }, { "vulnerability": "VCID-tqy8-1kes-m3ek" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ufhw-4wuz-cfe2" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-um8a-bvjq-abgy" }, { "vulnerability": "VCID-uran-x628-rffb" }, { "vulnerability": "VCID-uscn-2nfg-mqay" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vaas-sjrq-8bch" }, { "vulnerability": "VCID-vpcf-pnzv-1bgy" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wbht-h92n-dkdu" }, { "vulnerability": "VCID-wbmf-tw8n-1ucj" }, { "vulnerability": "VCID-wbqh-dpwk-pfgd" }, { "vulnerability": "VCID-wvp7-k93h-6ubw" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x4td-c35s-tkgw" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y1ub-vfy9-7ygt" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-y6s6-ubu5-dbad" }, { "vulnerability": "VCID-ybp6-nrjt-7bdk" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-yjke-vqxv-8bgu" }, { "vulnerability": "VCID-yv81-wmmc-hqgx" }, { "vulnerability": "VCID-z3mf-7y22-q7bz" }, { "vulnerability": "VCID-z677-7ega-8khj" }, { "vulnerability": "VCID-z6je-fvue-jbg8" }, { "vulnerability": "VCID-z6yx-cgpy-cqax" }, { "vulnerability": "VCID-zhm8-29qs-jufd" }, { "vulnerability": "VCID-zjvv-t6ep-mkcf" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zmv8-tbdx-7bce" }, { "vulnerability": "VCID-znt9-r8xc-bbek" }, { "vulnerability": "VCID-zq3e-3wzu-d3eh" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" }, { "vulnerability": "VCID-zxv1-87z1-hkbr" }, { "vulnerability": "VCID-zzch-261b-3ua1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4891?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2chc-4dg7-eyah" }, { "vulnerability": "VCID-2mct-5s36-3qeq" }, { "vulnerability": "VCID-2q3f-jw6b-w7dp" }, { "vulnerability": "VCID-2z91-euur-mkg6" }, { "vulnerability": "VCID-38yd-3y7b-dyds" }, { "vulnerability": "VCID-3xy1-2v4a-yqdk" }, { "vulnerability": "VCID-4nzz-rnew-73e7" }, { "vulnerability": "VCID-4ry5-9ggw-zkh8" }, { "vulnerability": "VCID-5652-c7tg-6uft" }, { "vulnerability": "VCID-611d-157a-4fc3" }, { "vulnerability": "VCID-631h-1ukc-2kbr" }, { "vulnerability": "VCID-672k-12q2-5ybx" }, { "vulnerability": "VCID-6bqr-yf8y-xba6" }, { "vulnerability": "VCID-6daw-xvw5-tyfw" }, { "vulnerability": "VCID-6rz4-7zc4-bfcd" }, { "vulnerability": "VCID-6vbx-9hme-ckgy" }, { "vulnerability": "VCID-72yn-u5c2-qkfd" }, { "vulnerability": "VCID-7fq4-rz4j-nye3" }, { "vulnerability": "VCID-8dyu-ua2v-x7hf" }, { "vulnerability": "VCID-8hrj-ge12-v3d9" }, { "vulnerability": "VCID-8pzd-tzc6-w7a8" }, { "vulnerability": "VCID-9fb5-82gn-c7em" }, { "vulnerability": "VCID-9vzm-g4pv-dkga" }, { "vulnerability": "VCID-am9k-887b-zbhh" }, { "vulnerability": "VCID-arvt-qqf4-wbg2" }, { "vulnerability": "VCID-aw5d-2n95-m3fj" }, { "vulnerability": "VCID-ayaa-beyt-xkcu" }, { "vulnerability": "VCID-b1uw-w9nk-v3ht" }, { "vulnerability": "VCID-bhkq-eqaw-1fba" }, { "vulnerability": "VCID-c9w3-hck6-q3g1" }, { "vulnerability": "VCID-canj-96xs-8kg7" }, { "vulnerability": "VCID-ccsd-p6nq-93ae" }, { "vulnerability": "VCID-cpk7-uyvf-3kb6" }, { "vulnerability": "VCID-d4hm-me5r-g7ck" }, { "vulnerability": "VCID-d93s-emc6-ayae" }, { "vulnerability": "VCID-dgyb-2jpx-7ber" }, { "vulnerability": "VCID-ehrs-qbcg-z3e1" }, { "vulnerability": "VCID-fm7d-pca1-hkeh" }, { "vulnerability": "VCID-fmgr-9d3k-fycq" }, { "vulnerability": "VCID-fn4f-qgf7-rudy" }, { "vulnerability": "VCID-fpbq-ppxw-f7c2" }, { "vulnerability": "VCID-fqx5-v7z8-n7gz" }, { "vulnerability": "VCID-fr9e-d4k4-qbeu" }, { "vulnerability": "VCID-g46h-2sqe-xkbk" }, { "vulnerability": "VCID-g65z-w3mz-7qh4" }, { "vulnerability": "VCID-ggn4-tvmm-8baa" }, { "vulnerability": "VCID-gh3j-c1nj-sfby" }, { "vulnerability": "VCID-gpww-4m2k-57br" }, { "vulnerability": "VCID-hbjb-er6u-37dz" }, { "vulnerability": "VCID-hykv-yanw-1bf9" }, { "vulnerability": "VCID-jm7h-py2k-c7ha" }, { "vulnerability": "VCID-k4db-v3dj-wbaa" }, { "vulnerability": "VCID-kgbx-td11-53cs" }, { "vulnerability": "VCID-kv51-zgyb-fffy" }, { "vulnerability": "VCID-mg3n-auw4-r7aa" }, { "vulnerability": "VCID-mhv7-ssh3-dfbr" }, { "vulnerability": "VCID-mn3y-yrxt-jkgx" }, { "vulnerability": "VCID-n6xy-jdpr-tfbq" }, { "vulnerability": "VCID-ndga-7wj3-xfc8" }, { "vulnerability": "VCID-nhb2-strk-c7df" }, { "vulnerability": "VCID-nrc9-7pss-6bgh" }, { "vulnerability": "VCID-ns8v-m9be-pkfx" }, { "vulnerability": "VCID-nvzg-8vh5-m3fy" }, { "vulnerability": "VCID-pf7r-7sdb-ayfk" }, { "vulnerability": "VCID-pfnv-dcqt-vygm" }, { "vulnerability": "VCID-pnp2-whuf-w3d7" }, { "vulnerability": "VCID-pxh4-v8pd-zbdg" }, { "vulnerability": "VCID-q39u-5dd6-qyd2" }, { "vulnerability": "VCID-q4z8-y3dw-rfbc" }, { "vulnerability": "VCID-q9xq-fn2h-uqf2" }, { "vulnerability": "VCID-qk9k-56ak-b7cm" }, { "vulnerability": "VCID-r2hy-dcn6-kfb8" }, { "vulnerability": "VCID-r3kv-sfxj-7bgv" }, { "vulnerability": "VCID-rben-hn5u-kqdh" }, { "vulnerability": "VCID-ryah-d2mj-vkha" }, { "vulnerability": "VCID-sfff-qfwq-gqhh" }, { "vulnerability": "VCID-t2x6-ux5m-aqgg" }, { "vulnerability": "VCID-t53k-td6e-v7av" }, { "vulnerability": "VCID-trbp-mf1m-6kbm" }, { "vulnerability": "VCID-tsw3-kjqm-kqeu" }, { "vulnerability": "VCID-tu3t-rdy1-eqa7" }, { "vulnerability": "VCID-tx52-6u1t-77cm" }, { "vulnerability": "VCID-tynz-dfpk-6kgb" }, { "vulnerability": "VCID-ugr8-526g-5uhc" }, { "vulnerability": "VCID-utc5-s51e-wygd" }, { "vulnerability": "VCID-vzty-mrqp-nbam" }, { "vulnerability": "VCID-wxte-z2qm-xues" }, { "vulnerability": "VCID-wyae-x32v-ckb8" }, { "vulnerability": "VCID-x3j5-e33g-fqea" }, { "vulnerability": "VCID-x5kg-eg4a-7bdc" }, { "vulnerability": "VCID-xstr-45ms-4qe6" }, { "vulnerability": "VCID-xtt1-8er5-y7dh" }, { "vulnerability": "VCID-y3yu-p8ng-buhc" }, { "vulnerability": "VCID-yekv-pd53-nfgw" }, { "vulnerability": "VCID-yfgk-2pdu-w3gc" }, { "vulnerability": "VCID-zm7g-5yf7-tyc6" }, { "vulnerability": "VCID-zw8d-7hse-1fe1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2014-8127" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zxv1-87z1-hkbr" } ], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }