| 0 |
| url |
VCID-1937-rk84-qydq |
| vulnerability_id |
VCID-1937-rk84-qydq |
| summary |
Use-after-free vulnerability in International Components for Unicode (ICU), as used in Google Chrome before 30.0.1599.66 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2924 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71785 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71824 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.7183 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00672 |
| scoring_system |
epss |
| scoring_elements |
0.71807 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2924 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2924
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1937-rk84-qydq |
|
| 1 |
| url |
VCID-3hng-5n5z-7faw |
| vulnerability_id |
VCID-3hng-5n5z-7faw |
| summary |
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-4844 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.11054 |
| scoring_system |
epss |
| scoring_elements |
0.93584 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.11054 |
| scoring_system |
epss |
| scoring_elements |
0.93594 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.11054 |
| scoring_system |
epss |
| scoring_elements |
0.93595 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.11054 |
| scoring_system |
epss |
| scoring_elements |
0.93593 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-4844 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2015-4844
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3hng-5n5z-7faw |
|
| 2 |
| url |
VCID-3yjj-bp6d-tkab |
| vulnerability_id |
VCID-3yjj-bp6d-tkab |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "font processing errors" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2419 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.12809 |
| scoring_system |
epss |
| scoring_elements |
0.94152 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.12809 |
| scoring_system |
epss |
| scoring_elements |
0.9416 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.12809 |
| scoring_system |
epss |
| scoring_elements |
0.94159 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.12809 |
| scoring_system |
epss |
| scoring_elements |
0.94161 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2419 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2419
|
| risk_score |
0.2 |
| exploitability |
2.0 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3yjj-bp6d-tkab |
|
| 3 |
| url |
VCID-562t-my7q-fkhk |
| vulnerability_id |
VCID-562t-my7q-fkhk |
| summary |
The Regular Expressions package in International Components for Unicode (ICU) for C/C++ before 2014-12-03, as used in Google Chrome before 40.0.2214.91, calculates certain values without ensuring that they can be represented in a 24-bit field, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted string, a related issue to CVE-2014-7923. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9654 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01671 |
| scoring_system |
epss |
| scoring_elements |
0.82463 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01671 |
| scoring_system |
epss |
| scoring_elements |
0.82493 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01671 |
| scoring_system |
epss |
| scoring_elements |
0.82491 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01671 |
| scoring_system |
epss |
| scoring_elements |
0.82489 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9654 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-9654
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-562t-my7q-fkhk |
|
| 4 |
| url |
VCID-5er9-z3hf-z7he |
| vulnerability_id |
VCID-5er9-z3hf-z7he |
| summary |
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2007-4770 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0367 |
| scoring_system |
epss |
| scoring_elements |
0.88107 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.0367 |
| scoring_system |
epss |
| scoring_elements |
0.88128 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.0367 |
| scoring_system |
epss |
| scoring_elements |
0.88131 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.0367 |
| scoring_system |
epss |
| scoring_elements |
0.8813 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2007-4770 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@3.8.1-3%2Blenny3 |
| purl |
pkg:deb/debian/icu@3.8.1-3%2Blenny3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8mt7-9hjj-fbfg |
|
| 8 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 9 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 10 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 11 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 12 |
| vulnerability |
VCID-bvhc-8fge-9uez |
|
| 13 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 14 |
| vulnerability |
VCID-exg8-f6tj-k7fp |
|
| 15 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 16 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 17 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 18 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 19 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 20 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 21 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 22 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 23 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 24 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 25 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 26 |
| vulnerability |
VCID-trma-c9p3-uub9 |
|
| 27 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 28 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 29 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 30 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 31 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 32 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 33 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@3.8.1-3%252Blenny3 |
|
|
| aliases |
CVE-2007-4770
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5er9-z3hf-z7he |
|
| 5 |
| url |
VCID-6grx-g6uw-yybd |
| vulnerability_id |
VCID-6grx-g6uw-yybd |
| summary |
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-0494 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.05634 |
| scoring_system |
epss |
| scoring_elements |
0.90506 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.05634 |
| scoring_system |
epss |
| scoring_elements |
0.90521 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.05634 |
| scoring_system |
epss |
| scoring_elements |
0.90522 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.05634 |
| scoring_system |
epss |
| scoring_elements |
0.9052 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-0494 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2016-0494
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
5.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6grx-g6uw-yybd |
|
| 6 |
| url |
VCID-6q8q-9q3y-abhc |
| vulnerability_id |
VCID-6q8q-9q3y-abhc |
| summary |
International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7868 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0104 |
| scoring_system |
epss |
| scoring_elements |
0.77799 |
| published_at |
2026-06-07T12:55:00Z |
|
| 1 |
| value |
0.0104 |
| scoring_system |
epss |
| scoring_elements |
0.77775 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.0104 |
| scoring_system |
epss |
| scoring_elements |
0.77802 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.0104 |
| scoring_system |
epss |
| scoring_elements |
0.77808 |
| published_at |
2026-06-06T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7868 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2017-7868
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6q8q-9q3y-abhc |
|
| 7 |
| url |
VCID-7fz2-29gm-eufm |
| vulnerability_id |
VCID-7fz2-29gm-eufm |
| summary |
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10531 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0079 |
| scoring_system |
epss |
| scoring_elements |
0.74237 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.0079 |
| scoring_system |
epss |
| scoring_elements |
0.7427 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.0079 |
| scoring_system |
epss |
| scoring_elements |
0.74275 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.0079 |
| scoring_system |
epss |
| scoring_elements |
0.74261 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10531 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-10531
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7fz2-29gm-eufm |
|
| 8 |
| url |
VCID-8mt7-9hjj-fbfg |
| vulnerability_id |
VCID-8mt7-9hjj-fbfg |
| summary |
International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| purl |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-bvhc-8fge-9uez |
|
| 12 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 13 |
| vulnerability |
VCID-exg8-f6tj-k7fp |
|
| 14 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 15 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 16 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 17 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 18 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 19 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 20 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 21 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 22 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 23 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 24 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 25 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 26 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 27 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 28 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 29 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 30 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 31 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.4.1-8%252Bsqueeze2 |
|
|
| aliases |
CVE-2009-0153
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8mt7-9hjj-fbfg |
|
| 9 |
| url |
VCID-8ucv-hrcz-uqau |
| vulnerability_id |
VCID-8ucv-hrcz-uqau |
| summary |
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2015-2632
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8ucv-hrcz-uqau |
|
| 10 |
|
| 11 |
| url |
VCID-aykx-vyhu-7yfr |
| vulnerability_id |
VCID-aykx-vyhu-7yfr |
| summary |
The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ does not ensure that there is a '\0' character at the end of a certain temporary array, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long httpAcceptLanguage argument. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6293 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01066 |
| scoring_system |
epss |
| scoring_elements |
0.78032 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01066 |
| scoring_system |
epss |
| scoring_elements |
0.7806 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01066 |
| scoring_system |
epss |
| scoring_elements |
0.78067 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01066 |
| scoring_system |
epss |
| scoring_elements |
0.78056 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6293 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2016-6293
|
| risk_score |
1.5 |
| exploitability |
0.5 |
| weighted_severity |
3.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-aykx-vyhu-7yfr |
|
| 12 |
| url |
VCID-bkbn-dxg2-dqfk |
| vulnerability_id |
VCID-bkbn-dxg2-dqfk |
| summary |
Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-6585 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01314 |
| scoring_system |
epss |
| scoring_elements |
0.80176 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01314 |
| scoring_system |
epss |
| scoring_elements |
0.80201 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01314 |
| scoring_system |
epss |
| scoring_elements |
0.80205 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01314 |
| scoring_system |
epss |
| scoring_elements |
0.802 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-6585 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-6585
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bkbn-dxg2-dqfk |
|
| 13 |
| url |
VCID-bvhc-8fge-9uez |
| vulnerability_id |
VCID-bvhc-8fge-9uez |
| summary |
Race condition in the International Components for Unicode (ICU) functionality in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0900 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76529 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76558 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76564 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00934 |
| scoring_system |
epss |
| scoring_elements |
0.76553 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0900 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
|
| aliases |
CVE-2013-0900
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bvhc-8fge-9uez |
|
| 14 |
| url |
VCID-excs-dj44-yfby |
| vulnerability_id |
VCID-excs-dj44-yfby |
| summary |
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a zero-length quantifier. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-7926 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85799 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85821 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85822 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85819 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-7926 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-7926
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-excs-dj44-yfby |
|
| 15 |
| url |
VCID-exg8-f6tj-k7fp |
| vulnerability_id |
VCID-exg8-f6tj-k7fp |
| summary |
Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) before 49.1 allows remote attackers to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
|
| aliases |
CVE-2011-4599
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-exg8-f6tj-k7fp |
|
| 16 |
| url |
VCID-f3kd-641n-17ch |
| vulnerability_id |
VCID-f3kd-641n-17ch |
| summary |
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-4760 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.09686 |
| scoring_system |
epss |
| scoring_elements |
0.93063 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.09686 |
| scoring_system |
epss |
| scoring_elements |
0.93074 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.09686 |
| scoring_system |
epss |
| scoring_elements |
0.93072 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.09686 |
| scoring_system |
epss |
| scoring_elements |
0.93069 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-4760 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 2 |
|
|
| aliases |
CVE-2015-4760
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f3kd-641n-17ch |
|
| 17 |
|
| 18 |
| url |
VCID-f7v8-vz82-6ucj |
| vulnerability_id |
VCID-f7v8-vz82-6ucj |
| summary |
A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag function. This issue may lead to memory corruption and local arbitrary code execution. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-5222
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f7v8-vz82-6ucj |
|
| 19 |
| url |
VCID-fbng-2ww3-6bdu |
| vulnerability_id |
VCID-fbng-2ww3-6bdu |
| summary |
The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted character sequence. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-7940
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fbng-2ww3-6bdu |
|
| 20 |
| url |
VCID-fmhx-7a3k-ffdx |
| vulnerability_id |
VCID-fmhx-7a3k-ffdx |
| summary |
Stack-based buffer overflow in the ures_getByKeyWithFallback function in common/uresbund.cpp in International Components for Unicode (ICU) before 54.1 for C/C++ allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted uloc_getDisplayName call. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9911 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01804 |
| scoring_system |
epss |
| scoring_elements |
0.83153 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01804 |
| scoring_system |
epss |
| scoring_elements |
0.83178 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01804 |
| scoring_system |
epss |
| scoring_elements |
0.83179 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01804 |
| scoring_system |
epss |
| scoring_elements |
0.83175 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-9911 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2014-9911
|
| risk_score |
3.8 |
| exploitability |
0.5 |
| weighted_severity |
7.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fmhx-7a3k-ffdx |
|
| 21 |
| url |
VCID-hkbb-bc99-yqdd |
| vulnerability_id |
VCID-hkbb-bc99-yqdd |
| summary |
multiple issues |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
| 2 |
|
|
| aliases |
CVE-2017-15422
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hkbb-bc99-yqdd |
|
| 22 |
| url |
VCID-k1bn-aprc-m3ht |
| vulnerability_id |
VCID-k1bn-aprc-m3ht |
| summary |
The ucnv_io_getConverterName function in common/ucnv_io.cpp in International Components for Unicode (ICU), as used in Google Chrome before 44.0.2403.89, mishandles converter names with initial x- substrings, which allows remote attackers to cause a denial of service (read of uninitialized memory) or possibly have unspecified other impact via a crafted file. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1270 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01188 |
| scoring_system |
epss |
| scoring_elements |
0.79153 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01188 |
| scoring_system |
epss |
| scoring_elements |
0.79179 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01188 |
| scoring_system |
epss |
| scoring_elements |
0.79185 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01188 |
| scoring_system |
epss |
| scoring_elements |
0.79176 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-1270 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2015-1270
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-k1bn-aprc-m3ht |
|
| 23 |
| url |
VCID-kauc-686u-jqeh |
| vulnerability_id |
VCID-kauc-686u-jqeh |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "handling of [a] glyph table" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2383 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90497 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90511 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90512 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90509 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2383 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2383
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kauc-686u-jqeh |
|
| 24 |
| url |
VCID-pmfb-6z51-bfh9 |
| vulnerability_id |
VCID-pmfb-6z51-bfh9 |
| summary |
Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack. NOTE: some of these details are obtained from third party information. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2007-4771 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02332 |
| scoring_system |
epss |
| scoring_elements |
0.85134 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.02332 |
| scoring_system |
epss |
| scoring_elements |
0.85159 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.02332 |
| scoring_system |
epss |
| scoring_elements |
0.85163 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.02332 |
| scoring_system |
epss |
| scoring_elements |
0.85158 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2007-4771 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@3.8.1-3%2Blenny3 |
| purl |
pkg:deb/debian/icu@3.8.1-3%2Blenny3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8mt7-9hjj-fbfg |
|
| 8 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 9 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 10 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 11 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 12 |
| vulnerability |
VCID-bvhc-8fge-9uez |
|
| 13 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 14 |
| vulnerability |
VCID-exg8-f6tj-k7fp |
|
| 15 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 16 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 17 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 18 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 19 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 20 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 21 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 22 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 23 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 24 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 25 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 26 |
| vulnerability |
VCID-trma-c9p3-uub9 |
|
| 27 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 28 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 29 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 30 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 31 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 32 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 33 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@3.8.1-3%252Blenny3 |
|
|
| aliases |
CVE-2007-4771
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pmfb-6z51-bfh9 |
|
| 25 |
| url |
VCID-qwzq-dmn1-j7fy |
| vulnerability_id |
VCID-qwzq-dmn1-j7fy |
| summary |
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type that is inconsistent with a header file, which allows remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 2 |
|
|
| aliases |
CVE-2014-8147
|
| risk_score |
0.8 |
| exploitability |
2.0 |
| weighted_severity |
0.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qwzq-dmn1-j7fy |
|
| 26 |
| url |
VCID-rz8q-v7bh-9fe1 |
| vulnerability_id |
VCID-rz8q-v7bh-9fe1 |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "font layout" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2384 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90497 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90511 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90512 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.0562 |
| scoring_system |
epss |
| scoring_elements |
0.90509 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2384 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2384
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rz8q-v7bh-9fe1 |
|
| 27 |
| url |
VCID-scv7-4fwv-vyek |
| vulnerability_id |
VCID-scv7-4fwv-vyek |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "checking of [a] glyph table" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1569 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0147 |
| scoring_system |
epss |
| scoring_elements |
0.81262 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.0147 |
| scoring_system |
epss |
| scoring_elements |
0.81291 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.0147 |
| scoring_system |
epss |
| scoring_elements |
0.81293 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.0147 |
| scoring_system |
epss |
| scoring_elements |
0.8129 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1569 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-1569
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-scv7-4fwv-vyek |
|
| 28 |
| url |
VCID-trma-c9p3-uub9 |
| vulnerability_id |
VCID-trma-c9p3-uub9 |
| summary |
The International Components for Unicode (ICU) library in Apple Mac OS X before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems omits some invalid character sequences during conversion of some character encodings, which might allow remote attackers to conduct cross-site scripting (XSS) attacks. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2008-1036 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02644 |
| scoring_system |
epss |
| scoring_elements |
0.8601 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.02644 |
| scoring_system |
epss |
| scoring_elements |
0.86031 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.02644 |
| scoring_system |
epss |
| scoring_elements |
0.86034 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.02644 |
| scoring_system |
epss |
| scoring_elements |
0.8603 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2008-1036 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| purl |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-bvhc-8fge-9uez |
|
| 12 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 13 |
| vulnerability |
VCID-exg8-f6tj-k7fp |
|
| 14 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 15 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 16 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 17 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 18 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 19 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 20 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 21 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 22 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 23 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 24 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 25 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 26 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 27 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 28 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 29 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 30 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 31 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.4.1-8%252Bsqueeze2 |
|
|
| aliases |
CVE-2008-1036
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-trma-c9p3-uub9 |
|
| 29 |
| url |
VCID-un3w-2ee4-jbcy |
| vulnerability_id |
VCID-un3w-2ee4-jbcy |
| summary |
International Components for Unicode (ICU-20850) v66.1 was discovered to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-21913 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27295 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27363 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27312 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27273 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-21913 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-21913
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
5.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-un3w-2ee4-jbcy |
|
| 30 |
| url |
VCID-wpkr-mbq4-ekg5 |
| vulnerability_id |
VCID-wpkr-mbq4-ekg5 |
| summary |
International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7867 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0112 |
| scoring_system |
epss |
| scoring_elements |
0.78601 |
| published_at |
2026-06-07T12:55:00Z |
|
| 1 |
| value |
0.0112 |
| scoring_system |
epss |
| scoring_elements |
0.78576 |
| published_at |
2026-06-04T12:55:00Z |
|
| 2 |
| value |
0.0112 |
| scoring_system |
epss |
| scoring_elements |
0.78603 |
| published_at |
2026-06-05T12:55:00Z |
|
| 3 |
| value |
0.0112 |
| scoring_system |
epss |
| scoring_elements |
0.78611 |
| published_at |
2026-06-06T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7867 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2017-7867
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wpkr-mbq4-ekg5 |
|
| 31 |
| url |
VCID-wsen-t4x7-wuhc |
| vulnerability_id |
VCID-wsen-t4x7-wuhc |
| summary |
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a look-behind expression. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-7923 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85799 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85821 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85822 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.02564 |
| scoring_system |
epss |
| scoring_elements |
0.85819 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-7923 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-7923
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wsen-t4x7-wuhc |
|
| 32 |
| url |
VCID-xdhx-y4jj-xfeu |
| vulnerability_id |
VCID-xdhx-y4jj-xfeu |
| summary |
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-18928 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00612 |
| scoring_system |
epss |
| scoring_elements |
0.70205 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.00612 |
| scoring_system |
epss |
| scoring_elements |
0.70247 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.00612 |
| scoring_system |
epss |
| scoring_elements |
0.70256 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.00612 |
| scoring_system |
epss |
| scoring_elements |
0.70238 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-18928 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-18928
|
| risk_score |
4.4 |
| exploitability |
0.5 |
| weighted_severity |
8.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xdhx-y4jj-xfeu |
|
| 33 |
| url |
VCID-yhgb-pmpp-9uc2 |
| vulnerability_id |
VCID-yhgb-pmpp-9uc2 |
| summary |
Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-6591
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yhgb-pmpp-9uc2 |
|
| 34 |
| url |
VCID-yzqr-kpjj-akgj |
| vulnerability_id |
VCID-yzqr-kpjj-akgj |
| summary |
Stack-based buffer overflow in the Locale class in common/locid.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long locale string. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-7415 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.7928 |
| published_at |
2026-06-04T12:55:00Z |
|
| 1 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.79306 |
| published_at |
2026-06-05T12:55:00Z |
|
| 2 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.79311 |
| published_at |
2026-06-06T12:55:00Z |
|
| 3 |
| value |
0.01205 |
| scoring_system |
epss |
| scoring_elements |
0.79303 |
| published_at |
2026-06-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-7415 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2016-7415
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yzqr-kpjj-akgj |
|
| 35 |
| url |
VCID-zkex-ss5h-5ke5 |
| vulnerability_id |
VCID-zkex-ss5h-5ke5 |
| summary |
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 2 |
|
|
| aliases |
CVE-2014-8146
|
| risk_score |
0.4 |
| exploitability |
2.0 |
| weighted_severity |
0.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zkex-ss5h-5ke5 |
|