Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/gimp@1.0.0-1
Typedeb
Namespacedebian
Namegimp
Version1.0.0-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.10.34-1+deb12u10
Latest_non_vulnerable_version3.2.2-1
Affected_by_vulnerabilities
0
url VCID-1da3-1t47-4ygh
vulnerability_id VCID-1da3-1t47-4ygh
summary 
Multiple vulnerabilities have been discovered in GIMP, allowing for the
    remote execution of arbitrary code.
references
0
reference_url http://bugzilla.gnome.org/show_bug.cgi?id=451379
reference_id
reference_type
scores
url http://bugzilla.gnome.org/show_bug.cgi?id=451379
1
reference_url http://developer.gimp.org/NEWS-2.2
reference_id
reference_type
scores
url http://developer.gimp.org/NEWS-2.2
2
reference_url http://issues.foresightlinux.org/browse/FL-457
reference_id
reference_type
scores
url http://issues.foresightlinux.org/browse/FL-457
3
reference_url http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=551
reference_id
reference_type
scores
url http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=551
4
reference_url http://osvdb.org/42139
reference_id
reference_type
scores
url http://osvdb.org/42139
5
reference_url http://osvdb.org/42140
reference_id
reference_type
scores
url http://osvdb.org/42140
6
reference_url http://osvdb.org/42141
reference_id
reference_type
scores
url http://osvdb.org/42141
7
reference_url http://osvdb.org/42142
reference_id
reference_type
scores
url http://osvdb.org/42142
8
reference_url http://osvdb.org/42143
reference_id
reference_type
scores
url http://osvdb.org/42143
9
reference_url http://osvdb.org/42144
reference_id
reference_type
scores
url http://osvdb.org/42144
10
reference_url http://osvdb.org/42145
reference_id
reference_type
scores
url http://osvdb.org/42145
11
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4519.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4519.json
12
reference_url https://api.first.org/data/v1/epss?cve=CVE-2006-4519
reference_id
reference_type
scores
0
value 0.07669
scoring_system epss
scoring_elements 0.91916
published_at 2026-04-18T12:55:00Z
1
value 0.07669
scoring_system epss
scoring_elements 0.91861
published_at 2026-04-01T12:55:00Z
2
value 0.07669
scoring_system epss
scoring_elements 0.91869
published_at 2026-04-02T12:55:00Z
3
value 0.07669
scoring_system epss
scoring_elements 0.91876
published_at 2026-04-04T12:55:00Z
4
value 0.07669
scoring_system epss
scoring_elements 0.91883
published_at 2026-04-07T12:55:00Z
5
value 0.07669
scoring_system epss
scoring_elements 0.91896
published_at 2026-04-08T12:55:00Z
6
value 0.07669
scoring_system epss
scoring_elements 0.91901
published_at 2026-04-13T12:55:00Z
7
value 0.07669
scoring_system epss
scoring_elements 0.91905
published_at 2026-04-12T12:55:00Z
8
value 0.07669
scoring_system epss
scoring_elements 0.9192
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2006-4519
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4519
14
reference_url http://secunia.com/advisories/26132
reference_id
reference_type
scores
url http://secunia.com/advisories/26132
15
reference_url http://secunia.com/advisories/26215
reference_id
reference_type
scores
url http://secunia.com/advisories/26215
16
reference_url http://secunia.com/advisories/26240
reference_id
reference_type
scores
url http://secunia.com/advisories/26240
17
reference_url http://secunia.com/advisories/26575
reference_id
reference_type
scores
url http://secunia.com/advisories/26575
18
reference_url http://secunia.com/advisories/26939
reference_id
reference_type
scores
url http://secunia.com/advisories/26939
19
reference_url http://security.gentoo.org/glsa/glsa-200707-09.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-200707-09.xml
20
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/35308
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/35308
21
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10842
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10842
22
reference_url http://www.debian.org/security/2007/dsa-1335
reference_id
reference_type
scores
url http://www.debian.org/security/2007/dsa-1335
23
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2007:170
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2007:170
24
reference_url http://www.redhat.com/support/errata/RHSA-2007-0513.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2007-0513.html
25
reference_url http://www.securityfocus.com/archive/1/475257/100/0/threaded
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/475257/100/0/threaded
26
reference_url http://www.securityfocus.com/bid/24835
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/24835
27
reference_url http://www.securitytracker.com/id?1018349
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1018349
28
reference_url http://www.ubuntu.com/usn/usn-494-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/usn-494-1
29
reference_url http://www.vupen.com/english/advisories/2007/2471
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/2471
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=247565
reference_id 247565
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=247565
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2006-4519
reference_id CVE-2006-4519
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2006-4519
33
reference_url https://security.gentoo.org/glsa/200707-09
reference_id GLSA-200707-09
reference_type
scores
url https://security.gentoo.org/glsa/200707-09
34
reference_url https://access.redhat.com/errata/RHSA-2007:0513
reference_id RHSA-2007:0513
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0513
35
reference_url https://usn.ubuntu.com/494-1/
reference_id USN-494-1
reference_type
scores
url https://usn.ubuntu.com/494-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.4.7-1
purl pkg:deb/debian/gimp@2.4.7-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5ds4-62sx-xud3
8
vulnerability VCID-5yx1-7s7z-m3ar
9
vulnerability VCID-6uzq-6ejf-kudc
10
vulnerability VCID-6yt4-22x4-2kdk
11
vulnerability VCID-81y4-4cxp-bybu
12
vulnerability VCID-99yx-7yr3-dfht
13
vulnerability VCID-bcwp-42cm-g3et
14
vulnerability VCID-bf8d-qkyh-auds
15
vulnerability VCID-bhsc-qy1f-27dj
16
vulnerability VCID-bq1c-u55x-5beh
17
vulnerability VCID-cdfh-uhac-sbam
18
vulnerability VCID-dav9-9ar6-gkbn
19
vulnerability VCID-dtpr-ndvm-5udg
20
vulnerability VCID-eybg-sjmd-q7a2
21
vulnerability VCID-fta8-9na3-u3hb
22
vulnerability VCID-g7zy-qgvc-cueg
23
vulnerability VCID-gdxp-wy9y-m3h1
24
vulnerability VCID-hkc8-4uw7-2yc3
25
vulnerability VCID-hrab-t25s-5ybg
26
vulnerability VCID-jy45-8uuz-y7bf
27
vulnerability VCID-krn9-65fh-sqgq
28
vulnerability VCID-nb8e-umcc-yudg
29
vulnerability VCID-q23d-29ut-uyhd
30
vulnerability VCID-qsyr-7tn1-uyhv
31
vulnerability VCID-r1ds-par2-5kb4
32
vulnerability VCID-rgcb-3vf1-23dk
33
vulnerability VCID-rraw-1e9t-x3f3
34
vulnerability VCID-s17j-j45c-nqgs
35
vulnerability VCID-sn31-adaw-8kbz
36
vulnerability VCID-svvz-6tap-wqbe
37
vulnerability VCID-tq1x-gwac-6uc9
38
vulnerability VCID-tth9-nncy-5qap
39
vulnerability VCID-u8j3-25up-5bcb
40
vulnerability VCID-ubet-venh-tqct
41
vulnerability VCID-uujf-3fhp-8fgg
42
vulnerability VCID-wbtb-bfgn-4bhq
43
vulnerability VCID-wj9c-s6kt-tqag
44
vulnerability VCID-y7a9-2p1n-z7fx
45
vulnerability VCID-ye1p-fndf-h7b9
46
vulnerability VCID-ygcy-xz6u-1qav
47
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.4.7-1
aliases CVE-2006-4519
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1da3-1t47-4ygh
1
url VCID-1w47-u2aa-8uaj
vulnerability_id VCID-1w47-u2aa-8uaj
summary gimp: GIMP: Remote Code Execution via out-of-bounds write in XWD file parsing
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2045.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2045.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2045
reference_id
reference_type
scores
0
value 0.00049
scoring_system epss
scoring_elements 0.15169
published_at 2026-04-02T12:55:00Z
1
value 0.00049
scoring_system epss
scoring_elements 0.1496
published_at 2026-04-18T12:55:00Z
2
value 0.00049
scoring_system epss
scoring_elements 0.1518
published_at 2026-04-09T12:55:00Z
3
value 0.00049
scoring_system epss
scoring_elements 0.1515
published_at 2026-04-11T12:55:00Z
4
value 0.00049
scoring_system epss
scoring_elements 0.15112
published_at 2026-04-12T12:55:00Z
5
value 0.00049
scoring_system epss
scoring_elements 0.15051
published_at 2026-04-13T12:55:00Z
6
value 0.00049
scoring_system epss
scoring_elements 0.14951
published_at 2026-04-16T12:55:00Z
7
value 0.00049
scoring_system epss
scoring_elements 0.15236
published_at 2026-04-04T12:55:00Z
8
value 0.00049
scoring_system epss
scoring_elements 0.15041
published_at 2026-04-07T12:55:00Z
9
value 0.00049
scoring_system epss
scoring_elements 0.15129
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2045
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2045
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2045
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1128604
reference_id 1128604
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1128604
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2441522
reference_id 2441522
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2441522
6
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/68b27dfb1cbd9b3f22d7fa624dbab8647ee5f275
reference_id 68b27dfb1cbd9b3f22d7fa624dbab8647ee5f275
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-21T04:56:40Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/68b27dfb1cbd9b3f22d7fa624dbab8647ee5f275
7
reference_url https://access.redhat.com/errata/RHSA-2026:4173
reference_id RHSA-2026:4173
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4173
8
reference_url https://access.redhat.com/errata/RHSA-2026:5113
reference_id RHSA-2026:5113
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5113
9
reference_url https://access.redhat.com/errata/RHSA-2026:5388
reference_id RHSA-2026:5388
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5388
10
reference_url https://access.redhat.com/errata/RHSA-2026:5389
reference_id RHSA-2026:5389
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5389
11
reference_url https://access.redhat.com/errata/RHSA-2026:5390
reference_id RHSA-2026:5390
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5390
12
reference_url https://access.redhat.com/errata/RHSA-2026:5391
reference_id RHSA-2026:5391
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5391
13
reference_url https://access.redhat.com/errata/RHSA-2026:5434
reference_id RHSA-2026:5434
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5434
14
reference_url https://access.redhat.com/errata/RHSA-2026:5435
reference_id RHSA-2026:5435
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5435
15
reference_url https://access.redhat.com/errata/RHSA-2026:5436
reference_id RHSA-2026:5436
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5436
16
reference_url https://access.redhat.com/errata/RHSA-2026:5437
reference_id RHSA-2026:5437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5437
17
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-119/
reference_id ZDI-26-119
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-21T04:56:40Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-119/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2026-2045
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1w47-u2aa-8uaj
2
url VCID-23ev-8ph6-qyd8
vulnerability_id VCID-23ev-8ph6-qyd8
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id
reference_type
scores
url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
2
reference_url http://openwall.com/lists/oss-security/2011/01/03/2
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/03/2
3
reference_url http://openwall.com/lists/oss-security/2011/01/04/7
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/04/7
4
reference_url http://osvdb.org/70282
reference_id
reference_type
scores
url http://osvdb.org/70282
5
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4540.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4540.json
6
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-4540
reference_id
reference_type
scores
0
value 0.04891
scoring_system epss
scoring_elements 0.89603
published_at 2026-04-18T12:55:00Z
1
value 0.04891
scoring_system epss
scoring_elements 0.89549
published_at 2026-04-01T12:55:00Z
2
value 0.04891
scoring_system epss
scoring_elements 0.89553
published_at 2026-04-02T12:55:00Z
3
value 0.04891
scoring_system epss
scoring_elements 0.89566
published_at 2026-04-07T12:55:00Z
4
value 0.04891
scoring_system epss
scoring_elements 0.89583
published_at 2026-04-08T12:55:00Z
5
value 0.04891
scoring_system epss
scoring_elements 0.89588
published_at 2026-04-13T12:55:00Z
6
value 0.04891
scoring_system epss
scoring_elements 0.89595
published_at 2026-04-11T12:55:00Z
7
value 0.04891
scoring_system epss
scoring_elements 0.89594
published_at 2026-04-12T12:55:00Z
8
value 0.04891
scoring_system epss
scoring_elements 0.89601
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-4540
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4540
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4540
8
reference_url http://secunia.com/advisories/42771
reference_id
reference_type
scores
url http://secunia.com/advisories/42771
9
reference_url http://secunia.com/advisories/44750
reference_id
reference_type
scores
url http://secunia.com/advisories/44750
10
reference_url http://secunia.com/advisories/48236
reference_id
reference_type
scores
url http://secunia.com/advisories/48236
11
reference_url http://secunia.com/advisories/50737
reference_id
reference_type
scores
url http://secunia.com/advisories/50737
12
reference_url http://security.gentoo.org/glsa/glsa-201209-23.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-201209-23.xml
13
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/64582
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/64582
14
reference_url http://www.debian.org/security/2012/dsa-2426
reference_id
reference_type
scores
url http://www.debian.org/security/2012/dsa-2426
15
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
16
reference_url http://www.redhat.com/support/errata/RHSA-2011-0838.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0838.html
17
reference_url http://www.redhat.com/support/errata/RHSA-2011-0839.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0839.html
18
reference_url http://www.vupen.com/english/advisories/2011/0016
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2011/0016
19
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id 608497
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
20
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=666793
reference_id 666793
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=666793
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/detail/CVE-2010-4540
reference_id CVE-2010-4540
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2010-4540
23
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
24
reference_url https://access.redhat.com/errata/RHSA-2011:0838
reference_id RHSA-2011:0838
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0838
25
reference_url https://access.redhat.com/errata/RHSA-2011:0839
reference_id RHSA-2011:0839
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0839
26
reference_url https://usn.ubuntu.com/1109-1/
reference_id USN-1109-1
reference_type
scores
url https://usn.ubuntu.com/1109-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2010-4540
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-23ev-8ph6-qyd8
3
url VCID-2k57-pmhe-9uds
vulnerability_id VCID-2k57-pmhe-9uds
summary GIMP FLI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FLI files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25100.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-2761
reference_id
reference_type
scores
0
value 0.00221
scoring_system epss
scoring_elements 0.44751
published_at 2026-04-18T12:55:00Z
1
value 0.00221
scoring_system epss
scoring_elements 0.44705
published_at 2026-04-02T12:55:00Z
2
value 0.00221
scoring_system epss
scoring_elements 0.44702
published_at 2026-04-12T12:55:00Z
3
value 0.00221
scoring_system epss
scoring_elements 0.44703
published_at 2026-04-13T12:55:00Z
4
value 0.00221
scoring_system epss
scoring_elements 0.44758
published_at 2026-04-16T12:55:00Z
5
value 0.00221
scoring_system epss
scoring_elements 0.44725
published_at 2026-04-04T12:55:00Z
6
value 0.00221
scoring_system epss
scoring_elements 0.44662
published_at 2026-04-07T12:55:00Z
7
value 0.00221
scoring_system epss
scoring_elements 0.44715
published_at 2026-04-08T12:55:00Z
8
value 0.00221
scoring_system epss
scoring_elements 0.44717
published_at 2026-04-09T12:55:00Z
9
value 0.00221
scoring_system epss
scoring_elements 0.44734
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-2761
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2761
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2761
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
4
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-204/
reference_id ZDI-25-204
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T18:21:41Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-204/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-2761
risk_score 2.4
exploitability 0.5
weighted_severity 4.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2k57-pmhe-9uds
4
url VCID-2p8s-2h2y-aqg4
vulnerability_id VCID-2p8s-2h2y-aqg4
summary gimp: GIMP: Denial of service via crafted PSP image file
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2271.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2271.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2271
reference_id
reference_type
scores
0
value 0.00101
scoring_system epss
scoring_elements 0.27906
published_at 2026-04-18T12:55:00Z
1
value 0.00101
scoring_system epss
scoring_elements 0.28067
published_at 2026-04-02T12:55:00Z
2
value 0.00101
scoring_system epss
scoring_elements 0.28012
published_at 2026-04-09T12:55:00Z
3
value 0.00101
scoring_system epss
scoring_elements 0.28015
published_at 2026-04-11T12:55:00Z
4
value 0.00101
scoring_system epss
scoring_elements 0.27972
published_at 2026-04-12T12:55:00Z
5
value 0.00101
scoring_system epss
scoring_elements 0.27913
published_at 2026-04-13T12:55:00Z
6
value 0.00101
scoring_system epss
scoring_elements 0.27924
published_at 2026-04-16T12:55:00Z
7
value 0.00101
scoring_system epss
scoring_elements 0.28109
published_at 2026-04-04T12:55:00Z
8
value 0.00101
scoring_system epss
scoring_elements 0.27903
published_at 2026-04-07T12:55:00Z
9
value 0.00101
scoring_system epss
scoring_elements 0.2797
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2271
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2271
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2271
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127841
reference_id 1127841
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127841
5
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/15732
reference_id 15732
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T19:52:36Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/15732
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2438429
reference_id 2438429
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T19:52:36Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2438429
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
11
reference_url https://access.redhat.com/security/cve/CVE-2026-2271
reference_id CVE-2026-2271
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T19:52:36Z/
url https://access.redhat.com/security/cve/CVE-2026-2271
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2026-2271
risk_score 1.9
exploitability 0.5
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2p8s-2h2y-aqg4
5
url VCID-2yr2-zppt-47eq
vulnerability_id VCID-2yr2-zppt-47eq
summary gimp: heap-based buffer overflow via specially crafted PSP file
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15059.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15059.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-15059
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.13072
published_at 2026-04-02T12:55:00Z
1
value 0.00043
scoring_system epss
scoring_elements 0.12838
published_at 2026-04-18T12:55:00Z
2
value 0.00043
scoring_system epss
scoring_elements 0.13058
published_at 2026-04-09T12:55:00Z
3
value 0.00043
scoring_system epss
scoring_elements 0.1302
published_at 2026-04-11T12:55:00Z
4
value 0.00043
scoring_system epss
scoring_elements 0.1298
published_at 2026-04-12T12:55:00Z
5
value 0.00043
scoring_system epss
scoring_elements 0.12934
published_at 2026-04-13T12:55:00Z
6
value 0.00043
scoring_system epss
scoring_elements 0.12835
published_at 2026-04-16T12:55:00Z
7
value 0.00043
scoring_system epss
scoring_elements 0.13125
published_at 2026-04-04T12:55:00Z
8
value 0.00043
scoring_system epss
scoring_elements 0.12927
published_at 2026-04-07T12:55:00Z
9
value 0.00043
scoring_system epss
scoring_elements 0.13006
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-15059
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15059
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15059
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/03575ac8cbb0ef3103b0a15d6598475088dcc15e
reference_id 03575ac8cbb0ef3103b0a15d6598475088dcc15e
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-23T19:49:18Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/03575ac8cbb0ef3103b0a15d6598475088dcc15e
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126267
reference_id 1126267
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126267
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2432296
reference_id 2432296
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2432296
7
reference_url https://access.redhat.com/errata/RHSA-2026:2707
reference_id RHSA-2026:2707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2707
8
reference_url https://access.redhat.com/errata/RHSA-2026:2930
reference_id RHSA-2026:2930
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2930
9
reference_url https://access.redhat.com/errata/RHSA-2026:2950
reference_id RHSA-2026:2950
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2950
10
reference_url https://access.redhat.com/errata/RHSA-2026:2953
reference_id RHSA-2026:2953
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2953
11
reference_url https://access.redhat.com/errata/RHSA-2026:2969
reference_id RHSA-2026:2969
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2969
12
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
13
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-1196/
reference_id ZDI-25-1196
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-23T19:49:18Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-1196/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-15059
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2yr2-zppt-47eq
6
url VCID-35p4-a8t3-f3g1
vulnerability_id VCID-35p4-a8t3-f3g1
summary security update
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2016-07/msg00005.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-updates/2016-07/msg00005.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2016-2589.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2016-2589.html
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4994.json
reference_id
reference_type
scores
0
value 2.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4994.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-4994
reference_id
reference_type
scores
0
value 0.00639
scoring_system epss
scoring_elements 0.70446
published_at 2026-04-01T12:55:00Z
1
value 0.00639
scoring_system epss
scoring_elements 0.70562
published_at 2026-04-18T12:55:00Z
2
value 0.00639
scoring_system epss
scoring_elements 0.70524
published_at 2026-04-12T12:55:00Z
3
value 0.00639
scoring_system epss
scoring_elements 0.7051
published_at 2026-04-13T12:55:00Z
4
value 0.00639
scoring_system epss
scoring_elements 0.70553
published_at 2026-04-16T12:55:00Z
5
value 0.00639
scoring_system epss
scoring_elements 0.70459
published_at 2026-04-02T12:55:00Z
6
value 0.00639
scoring_system epss
scoring_elements 0.70477
published_at 2026-04-04T12:55:00Z
7
value 0.00639
scoring_system epss
scoring_elements 0.70454
published_at 2026-04-07T12:55:00Z
8
value 0.00639
scoring_system epss
scoring_elements 0.70501
published_at 2026-04-08T12:55:00Z
9
value 0.00639
scoring_system epss
scoring_elements 0.70516
published_at 2026-04-09T12:55:00Z
10
value 0.00639
scoring_system epss
scoring_elements 0.70539
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-4994
4
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=767873
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=767873
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4994
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4994
6
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv2
scoring_elements AV:N/AC:H/Au:N/C:P/I:P/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
7
reference_url https://git.gnome.org/browse/gimp/commit/?id=e82aaa4b4ee0703c879e35ea9321fff6be3e9b6f
reference_id
reference_type
scores
url https://git.gnome.org/browse/gimp/commit/?id=e82aaa4b4ee0703c879e35ea9321fff6be3e9b6f
8
reference_url http://www.debian.org/security/2016/dsa-3612
reference_id
reference_type
scores
url http://www.debian.org/security/2016/dsa-3612
9
reference_url http://www.securityfocus.com/bid/91425
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/91425
10
reference_url http://www.securitytracker.com/id/1036226
reference_id
reference_type
scores
url http://www.securitytracker.com/id/1036226
11
reference_url http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.431987
reference_id
reference_type
scores
url http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.431987
12
reference_url http://www.ubuntu.com/usn/USN-3025-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/USN-3025-1
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1348617
reference_id 1348617
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1348617
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=828179
reference_id 828179
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=828179
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-4994
reference_id CVE-2016-4994
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2016-4994
17
reference_url https://access.redhat.com/errata/RHSA-2016:2589
reference_id RHSA-2016:2589
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:2589
18
reference_url https://usn.ubuntu.com/3025-1/
reference_id USN-3025-1
reference_type
scores
url https://usn.ubuntu.com/3025-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
purl pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1%252Bdeb8u2
1
url pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
purl pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-4wae-t183-yydb
5
vulnerability VCID-81y4-4cxp-bybu
6
vulnerability VCID-99yx-7yr3-dfht
7
vulnerability VCID-bcwp-42cm-g3et
8
vulnerability VCID-bf8d-qkyh-auds
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-dav9-9ar6-gkbn
11
vulnerability VCID-dtpr-ndvm-5udg
12
vulnerability VCID-eybg-sjmd-q7a2
13
vulnerability VCID-g7zy-qgvc-cueg
14
vulnerability VCID-gdxp-wy9y-m3h1
15
vulnerability VCID-hkc8-4uw7-2yc3
16
vulnerability VCID-hrab-t25s-5ybg
17
vulnerability VCID-jy45-8uuz-y7bf
18
vulnerability VCID-krn9-65fh-sqgq
19
vulnerability VCID-q23d-29ut-uyhd
20
vulnerability VCID-qsyr-7tn1-uyhv
21
vulnerability VCID-r1ds-par2-5kb4
22
vulnerability VCID-rraw-1e9t-x3f3
23
vulnerability VCID-s17j-j45c-nqgs
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-wj9c-s6kt-tqag
28
vulnerability VCID-ygcy-xz6u-1qav
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.18-1%252Bdeb9u1
aliases CVE-2016-4994
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-35p4-a8t3-f3g1
7
url VCID-4wae-t183-yydb
vulnerability_id VCID-4wae-t183-yydb
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17789.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17789.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17789
reference_id
reference_type
scores
0
value 0.00932
scoring_system epss
scoring_elements 0.76063
published_at 2026-04-01T12:55:00Z
1
value 0.00932
scoring_system epss
scoring_elements 0.76167
published_at 2026-04-18T12:55:00Z
2
value 0.00932
scoring_system epss
scoring_elements 0.76149
published_at 2026-04-11T12:55:00Z
3
value 0.00932
scoring_system epss
scoring_elements 0.76125
published_at 2026-04-12T12:55:00Z
4
value 0.00932
scoring_system epss
scoring_elements 0.76122
published_at 2026-04-13T12:55:00Z
5
value 0.00932
scoring_system epss
scoring_elements 0.76163
published_at 2026-04-16T12:55:00Z
6
value 0.00932
scoring_system epss
scoring_elements 0.76066
published_at 2026-04-02T12:55:00Z
7
value 0.00932
scoring_system epss
scoring_elements 0.76098
published_at 2026-04-04T12:55:00Z
8
value 0.00932
scoring_system epss
scoring_elements 0.76077
published_at 2026-04-07T12:55:00Z
9
value 0.00932
scoring_system epss
scoring_elements 0.76111
published_at 2026-04-08T12:55:00Z
10
value 0.00932
scoring_system epss
scoring_elements 0.76124
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17789
2
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=790849
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=790849
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.1
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:N/I:N/A:P
1
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
11
reference_url https://www.debian.org/security/2017/dsa-4077
reference_id
reference_type
scores
url https://www.debian.org/security/2017/dsa-4077
12
reference_url http://www.openwall.com/lists/oss-security/2017/12/19/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/12/19/5
13
reference_url http://www.securityfocus.com/bid/102898
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/102898
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1529146
reference_id 1529146
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1529146
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884837
reference_id 884837
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884837
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17789
reference_id CVE-2017-17789
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-17789
22
reference_url https://usn.ubuntu.com/3539-1/
reference_id USN-3539-1
reference_type
scores
url https://usn.ubuntu.com/3539-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
purl pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1%252Bdeb8u2
1
url pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
purl pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-4wae-t183-yydb
5
vulnerability VCID-81y4-4cxp-bybu
6
vulnerability VCID-99yx-7yr3-dfht
7
vulnerability VCID-bcwp-42cm-g3et
8
vulnerability VCID-bf8d-qkyh-auds
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-dav9-9ar6-gkbn
11
vulnerability VCID-dtpr-ndvm-5udg
12
vulnerability VCID-eybg-sjmd-q7a2
13
vulnerability VCID-g7zy-qgvc-cueg
14
vulnerability VCID-gdxp-wy9y-m3h1
15
vulnerability VCID-hkc8-4uw7-2yc3
16
vulnerability VCID-hrab-t25s-5ybg
17
vulnerability VCID-jy45-8uuz-y7bf
18
vulnerability VCID-krn9-65fh-sqgq
19
vulnerability VCID-q23d-29ut-uyhd
20
vulnerability VCID-qsyr-7tn1-uyhv
21
vulnerability VCID-r1ds-par2-5kb4
22
vulnerability VCID-rraw-1e9t-x3f3
23
vulnerability VCID-s17j-j45c-nqgs
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-wj9c-s6kt-tqag
28
vulnerability VCID-ygcy-xz6u-1qav
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.18-1%252Bdeb9u1
2
url pkg:deb/debian/gimp@2.10.8-2
purl pkg:deb/debian/gimp@2.10.8-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-81y4-4cxp-bybu
5
vulnerability VCID-99yx-7yr3-dfht
6
vulnerability VCID-bcwp-42cm-g3et
7
vulnerability VCID-bhsc-qy1f-27dj
8
vulnerability VCID-dav9-9ar6-gkbn
9
vulnerability VCID-dtpr-ndvm-5udg
10
vulnerability VCID-eybg-sjmd-q7a2
11
vulnerability VCID-gdxp-wy9y-m3h1
12
vulnerability VCID-hrab-t25s-5ybg
13
vulnerability VCID-jy45-8uuz-y7bf
14
vulnerability VCID-krn9-65fh-sqgq
15
vulnerability VCID-qsyr-7tn1-uyhv
16
vulnerability VCID-rraw-1e9t-x3f3
17
vulnerability VCID-s17j-j45c-nqgs
18
vulnerability VCID-tth9-nncy-5qap
19
vulnerability VCID-ubet-venh-tqct
20
vulnerability VCID-uujf-3fhp-8fgg
21
vulnerability VCID-ygcy-xz6u-1qav
22
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.8-2
aliases CVE-2017-17789
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4wae-t183-yydb
8
url VCID-5ds4-62sx-xud3
vulnerability_id VCID-5ds4-62sx-xud3
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1570.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1570.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-1570
reference_id
reference_type
scores
0
value 0.0308
scoring_system epss
scoring_elements 0.86705
published_at 2026-04-01T12:55:00Z
1
value 0.0308
scoring_system epss
scoring_elements 0.86716
published_at 2026-04-02T12:55:00Z
2
value 0.0308
scoring_system epss
scoring_elements 0.86735
published_at 2026-04-04T12:55:00Z
3
value 0.0308
scoring_system epss
scoring_elements 0.86734
published_at 2026-04-07T12:55:00Z
4
value 0.0308
scoring_system epss
scoring_elements 0.86753
published_at 2026-04-08T12:55:00Z
5
value 0.0308
scoring_system epss
scoring_elements 0.86762
published_at 2026-04-09T12:55:00Z
6
value 0.0308
scoring_system epss
scoring_elements 0.86775
published_at 2026-04-11T12:55:00Z
7
value 0.0308
scoring_system epss
scoring_elements 0.86773
published_at 2026-04-12T12:55:00Z
8
value 0.0308
scoring_system epss
scoring_elements 0.86768
published_at 2026-04-13T12:55:00Z
9
value 0.0308
scoring_system epss
scoring_elements 0.86783
published_at 2026-04-16T12:55:00Z
10
value 0.0308
scoring_system epss
scoring_elements 0.86788
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-1570
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1570
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=537356
reference_id 537356
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=537356
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555929
reference_id 555929
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555929
5
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
6
reference_url https://access.redhat.com/errata/RHSA-2011:0837
reference_id RHSA-2011:0837
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0837
7
reference_url https://access.redhat.com/errata/RHSA-2011:0838
reference_id RHSA-2011:0838
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0838
8
reference_url https://usn.ubuntu.com/880-1/
reference_id USN-880-1
reference_type
scores
url https://usn.ubuntu.com/880-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
purl pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5yx1-7s7z-m3ar
8
vulnerability VCID-6yt4-22x4-2kdk
9
vulnerability VCID-81y4-4cxp-bybu
10
vulnerability VCID-99yx-7yr3-dfht
11
vulnerability VCID-bcwp-42cm-g3et
12
vulnerability VCID-bf8d-qkyh-auds
13
vulnerability VCID-bhsc-qy1f-27dj
14
vulnerability VCID-bq1c-u55x-5beh
15
vulnerability VCID-cdfh-uhac-sbam
16
vulnerability VCID-dav9-9ar6-gkbn
17
vulnerability VCID-dtpr-ndvm-5udg
18
vulnerability VCID-eybg-sjmd-q7a2
19
vulnerability VCID-fta8-9na3-u3hb
20
vulnerability VCID-g7zy-qgvc-cueg
21
vulnerability VCID-gdxp-wy9y-m3h1
22
vulnerability VCID-hkc8-4uw7-2yc3
23
vulnerability VCID-hrab-t25s-5ybg
24
vulnerability VCID-jy45-8uuz-y7bf
25
vulnerability VCID-krn9-65fh-sqgq
26
vulnerability VCID-nb8e-umcc-yudg
27
vulnerability VCID-q23d-29ut-uyhd
28
vulnerability VCID-qsyr-7tn1-uyhv
29
vulnerability VCID-r1ds-par2-5kb4
30
vulnerability VCID-rgcb-3vf1-23dk
31
vulnerability VCID-rraw-1e9t-x3f3
32
vulnerability VCID-s17j-j45c-nqgs
33
vulnerability VCID-sn31-adaw-8kbz
34
vulnerability VCID-svvz-6tap-wqbe
35
vulnerability VCID-tth9-nncy-5qap
36
vulnerability VCID-ubet-venh-tqct
37
vulnerability VCID-uujf-3fhp-8fgg
38
vulnerability VCID-wbtb-bfgn-4bhq
39
vulnerability VCID-wj9c-s6kt-tqag
40
vulnerability VCID-y7a9-2p1n-z7fx
41
vulnerability VCID-ye1p-fndf-h7b9
42
vulnerability VCID-ygcy-xz6u-1qav
43
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.6.10-1%252Bsqueeze4
aliases CVE-2009-1570
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5ds4-62sx-xud3
9
url VCID-5yx1-7s7z-m3ar
vulnerability_id VCID-5yx1-7s7z-m3ar
summary gimp: NULL pointer deref crash when reading FIT file with crafted XTENSION header
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3236.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3236.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3236
reference_id
reference_type
scores
0
value 0.09627
scoring_system epss
scoring_elements 0.92863
published_at 2026-04-01T12:55:00Z
1
value 0.09627
scoring_system epss
scoring_elements 0.9287
published_at 2026-04-02T12:55:00Z
2
value 0.09627
scoring_system epss
scoring_elements 0.92874
published_at 2026-04-04T12:55:00Z
3
value 0.09627
scoring_system epss
scoring_elements 0.92871
published_at 2026-04-07T12:55:00Z
4
value 0.09627
scoring_system epss
scoring_elements 0.9288
published_at 2026-04-08T12:55:00Z
5
value 0.09627
scoring_system epss
scoring_elements 0.92884
published_at 2026-04-09T12:55:00Z
6
value 0.09627
scoring_system epss
scoring_elements 0.92889
published_at 2026-04-11T12:55:00Z
7
value 0.09627
scoring_system epss
scoring_elements 0.92888
published_at 2026-04-13T12:55:00Z
8
value 0.09627
scoring_system epss
scoring_elements 0.92898
published_at 2026-04-16T12:55:00Z
9
value 0.09627
scoring_system epss
scoring_elements 0.929
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3236
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3236
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3236
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=834627
reference_id 834627
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=834627
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/19482.txt
reference_id CVE-2012-3236;OSVDB-83634
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/19482.txt
5
reference_url https://usn.ubuntu.com/1559-1/
reference_id USN-1559-1
reference_type
scores
url https://usn.ubuntu.com/1559-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2012-3236
risk_score 0.2
exploitability 2.0
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5yx1-7s7z-m3ar
10
url VCID-6uzq-6ejf-kudc
vulnerability_id VCID-6uzq-6ejf-kudc
summary autotrace: buffer overflow when parsing BMP files
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1953.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1953.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1953
reference_id
reference_type
scores
0
value 0.00347
scoring_system epss
scoring_elements 0.57182
published_at 2026-04-01T12:55:00Z
1
value 0.00347
scoring_system epss
scoring_elements 0.57263
published_at 2026-04-02T12:55:00Z
2
value 0.00347
scoring_system epss
scoring_elements 0.57286
published_at 2026-04-04T12:55:00Z
3
value 0.00347
scoring_system epss
scoring_elements 0.57264
published_at 2026-04-07T12:55:00Z
4
value 0.00347
scoring_system epss
scoring_elements 0.57315
published_at 2026-04-08T12:55:00Z
5
value 0.00347
scoring_system epss
scoring_elements 0.57317
published_at 2026-04-09T12:55:00Z
6
value 0.00347
scoring_system epss
scoring_elements 0.5733
published_at 2026-04-11T12:55:00Z
7
value 0.00347
scoring_system epss
scoring_elements 0.57311
published_at 2026-04-12T12:55:00Z
8
value 0.00347
scoring_system epss
scoring_elements 0.5729
published_at 2026-04-13T12:55:00Z
9
value 0.00347
scoring_system epss
scoring_elements 0.57318
published_at 2026-04-16T12:55:00Z
10
value 0.00347
scoring_system epss
scoring_elements 0.57313
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1953
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1953
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=951257
reference_id 951257
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=951257
fixed_packages
0
url pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
purl pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5yx1-7s7z-m3ar
8
vulnerability VCID-6yt4-22x4-2kdk
9
vulnerability VCID-81y4-4cxp-bybu
10
vulnerability VCID-99yx-7yr3-dfht
11
vulnerability VCID-bcwp-42cm-g3et
12
vulnerability VCID-bf8d-qkyh-auds
13
vulnerability VCID-bhsc-qy1f-27dj
14
vulnerability VCID-bq1c-u55x-5beh
15
vulnerability VCID-cdfh-uhac-sbam
16
vulnerability VCID-dav9-9ar6-gkbn
17
vulnerability VCID-dtpr-ndvm-5udg
18
vulnerability VCID-eybg-sjmd-q7a2
19
vulnerability VCID-fta8-9na3-u3hb
20
vulnerability VCID-g7zy-qgvc-cueg
21
vulnerability VCID-gdxp-wy9y-m3h1
22
vulnerability VCID-hkc8-4uw7-2yc3
23
vulnerability VCID-hrab-t25s-5ybg
24
vulnerability VCID-jy45-8uuz-y7bf
25
vulnerability VCID-krn9-65fh-sqgq
26
vulnerability VCID-nb8e-umcc-yudg
27
vulnerability VCID-q23d-29ut-uyhd
28
vulnerability VCID-qsyr-7tn1-uyhv
29
vulnerability VCID-r1ds-par2-5kb4
30
vulnerability VCID-rgcb-3vf1-23dk
31
vulnerability VCID-rraw-1e9t-x3f3
32
vulnerability VCID-s17j-j45c-nqgs
33
vulnerability VCID-sn31-adaw-8kbz
34
vulnerability VCID-svvz-6tap-wqbe
35
vulnerability VCID-tth9-nncy-5qap
36
vulnerability VCID-ubet-venh-tqct
37
vulnerability VCID-uujf-3fhp-8fgg
38
vulnerability VCID-wbtb-bfgn-4bhq
39
vulnerability VCID-wj9c-s6kt-tqag
40
vulnerability VCID-y7a9-2p1n-z7fx
41
vulnerability VCID-ye1p-fndf-h7b9
42
vulnerability VCID-ygcy-xz6u-1qav
43
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.6.10-1%252Bsqueeze4
aliases CVE-2013-1953
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6uzq-6ejf-kudc
11
url VCID-6yt4-22x4-2kdk
vulnerability_id VCID-6yt4-22x4-2kdk
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00023.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00023.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00000.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00000.html
2
reference_url http://lists.opensuse.org/opensuse-updates/2012-09/msg00043.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-updates/2012-09/msg00043.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2012-1180.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1180.html
4
reference_url http://rhn.redhat.com/errata/RHSA-2012-1181.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1181.html
5
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3481.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3481.json
6
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3481
reference_id
reference_type
scores
0
value 0.03809
scoring_system epss
scoring_elements 0.88113
published_at 2026-04-18T12:55:00Z
1
value 0.03809
scoring_system epss
scoring_elements 0.88046
published_at 2026-04-01T12:55:00Z
2
value 0.03809
scoring_system epss
scoring_elements 0.88055
published_at 2026-04-02T12:55:00Z
3
value 0.03809
scoring_system epss
scoring_elements 0.88069
published_at 2026-04-04T12:55:00Z
4
value 0.03809
scoring_system epss
scoring_elements 0.88074
published_at 2026-04-07T12:55:00Z
5
value 0.03809
scoring_system epss
scoring_elements 0.88094
published_at 2026-04-08T12:55:00Z
6
value 0.03809
scoring_system epss
scoring_elements 0.88099
published_at 2026-04-09T12:55:00Z
7
value 0.03809
scoring_system epss
scoring_elements 0.88109
published_at 2026-04-11T12:55:00Z
8
value 0.03809
scoring_system epss
scoring_elements 0.88102
published_at 2026-04-12T12:55:00Z
9
value 0.03809
scoring_system epss
scoring_elements 0.88103
published_at 2026-04-13T12:55:00Z
10
value 0.03809
scoring_system epss
scoring_elements 0.88116
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3481
7
reference_url https://bugzilla.novell.com/show_bug.cgi?id=776572
reference_id
reference_type
scores
url https://bugzilla.novell.com/show_bug.cgi?id=776572
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3481
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3481
9
reference_url http://secunia.com/advisories/50296
reference_id
reference_type
scores
url http://secunia.com/advisories/50296
10
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2012:142
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2012:142
11
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2013:082
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2013:082
12
reference_url http://www.openwall.com/lists/oss-security/2012/08/20/8
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2012/08/20/8
13
reference_url http://www.securityfocus.com/bid/55101
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/55101
14
reference_url http://www.securitytracker.com/id?1027411
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1027411
15
reference_url http://www.ubuntu.com/usn/USN-1559-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/USN-1559-1
16
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685397
reference_id 685397
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685397
17
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=847303
reference_id 847303
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=847303
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-3481
reference_id CVE-2012-3481
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2012-3481
20
reference_url https://security.gentoo.org/glsa/201311-05
reference_id GLSA-201311-05
reference_type
scores
url https://security.gentoo.org/glsa/201311-05
21
reference_url https://access.redhat.com/errata/RHSA-2012:1180
reference_id RHSA-2012:1180
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1180
22
reference_url https://access.redhat.com/errata/RHSA-2012:1181
reference_id RHSA-2012:1181
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1181
23
reference_url https://usn.ubuntu.com/1559-1/
reference_id USN-1559-1
reference_type
scores
url https://usn.ubuntu.com/1559-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2012-3481
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6yt4-22x4-2kdk
12
url VCID-81y4-4cxp-bybu
vulnerability_id VCID-81y4-4cxp-bybu
summary GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XWD files. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25082.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-2760
reference_id
reference_type
scores
0
value 0.00451
scoring_system epss
scoring_elements 0.6374
published_at 2026-04-18T12:55:00Z
1
value 0.00451
scoring_system epss
scoring_elements 0.63674
published_at 2026-04-02T12:55:00Z
2
value 0.00451
scoring_system epss
scoring_elements 0.63728
published_at 2026-04-12T12:55:00Z
3
value 0.00451
scoring_system epss
scoring_elements 0.63695
published_at 2026-04-13T12:55:00Z
4
value 0.00451
scoring_system epss
scoring_elements 0.6373
published_at 2026-04-16T12:55:00Z
5
value 0.00451
scoring_system epss
scoring_elements 0.637
published_at 2026-04-04T12:55:00Z
6
value 0.00451
scoring_system epss
scoring_elements 0.6366
published_at 2026-04-07T12:55:00Z
7
value 0.00451
scoring_system epss
scoring_elements 0.63712
published_at 2026-04-08T12:55:00Z
8
value 0.00451
scoring_system epss
scoring_elements 0.63729
published_at 2026-04-09T12:55:00Z
9
value 0.00451
scoring_system epss
scoring_elements 0.63743
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-2760
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2760
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2760
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107758
reference_id 1107758
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107758
4
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
5
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-203/
reference_id ZDI-25-203
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T18:26:53Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-203/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-2760
risk_score 2.4
exploitability 0.5
weighted_severity 4.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-81y4-4cxp-bybu
13
url VCID-8fnp-pegd-vkf3
vulnerability_id VCID-8fnp-pegd-vkf3
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2012-1181.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1181.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3402.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3402.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3402
reference_id
reference_type
scores
0
value 0.01578
scoring_system epss
scoring_elements 0.81598
published_at 2026-04-18T12:55:00Z
1
value 0.01578
scoring_system epss
scoring_elements 0.81495
published_at 2026-04-01T12:55:00Z
2
value 0.01578
scoring_system epss
scoring_elements 0.81506
published_at 2026-04-02T12:55:00Z
3
value 0.01578
scoring_system epss
scoring_elements 0.81528
published_at 2026-04-04T12:55:00Z
4
value 0.01578
scoring_system epss
scoring_elements 0.81526
published_at 2026-04-07T12:55:00Z
5
value 0.01578
scoring_system epss
scoring_elements 0.81554
published_at 2026-04-08T12:55:00Z
6
value 0.01578
scoring_system epss
scoring_elements 0.81559
published_at 2026-04-13T12:55:00Z
7
value 0.01578
scoring_system epss
scoring_elements 0.81579
published_at 2026-04-11T12:55:00Z
8
value 0.01578
scoring_system epss
scoring_elements 0.81567
published_at 2026-04-12T12:55:00Z
9
value 0.01578
scoring_system epss
scoring_elements 0.81597
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3402
3
reference_url https://bugzilla.redhat.com/attachment.cgi?id=603059&action=diff
reference_id
reference_type
scores
url https://bugzilla.redhat.com/attachment.cgi?id=603059&action=diff
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3402
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3402
5
reference_url http://secunia.com/advisories/50737
reference_id
reference_type
scores
url http://secunia.com/advisories/50737
6
reference_url http://security.gentoo.org/glsa/glsa-201209-23.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-201209-23.xml
7
reference_url http://www.openwall.com/lists/oss-security/2012/08/20/6
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2012/08/20/6
8
reference_url http://www.securitytracker.com/id?1027411
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1027411
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=838941
reference_id 838941
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=838941
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-3402
reference_id CVE-2012-3402
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2012-3402
12
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
13
reference_url https://access.redhat.com/errata/RHSA-2012:1181
reference_id RHSA-2012:1181
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1181
fixed_packages
0
url pkg:deb/debian/gimp@2.4.7-1
purl pkg:deb/debian/gimp@2.4.7-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5ds4-62sx-xud3
8
vulnerability VCID-5yx1-7s7z-m3ar
9
vulnerability VCID-6uzq-6ejf-kudc
10
vulnerability VCID-6yt4-22x4-2kdk
11
vulnerability VCID-81y4-4cxp-bybu
12
vulnerability VCID-99yx-7yr3-dfht
13
vulnerability VCID-bcwp-42cm-g3et
14
vulnerability VCID-bf8d-qkyh-auds
15
vulnerability VCID-bhsc-qy1f-27dj
16
vulnerability VCID-bq1c-u55x-5beh
17
vulnerability VCID-cdfh-uhac-sbam
18
vulnerability VCID-dav9-9ar6-gkbn
19
vulnerability VCID-dtpr-ndvm-5udg
20
vulnerability VCID-eybg-sjmd-q7a2
21
vulnerability VCID-fta8-9na3-u3hb
22
vulnerability VCID-g7zy-qgvc-cueg
23
vulnerability VCID-gdxp-wy9y-m3h1
24
vulnerability VCID-hkc8-4uw7-2yc3
25
vulnerability VCID-hrab-t25s-5ybg
26
vulnerability VCID-jy45-8uuz-y7bf
27
vulnerability VCID-krn9-65fh-sqgq
28
vulnerability VCID-nb8e-umcc-yudg
29
vulnerability VCID-q23d-29ut-uyhd
30
vulnerability VCID-qsyr-7tn1-uyhv
31
vulnerability VCID-r1ds-par2-5kb4
32
vulnerability VCID-rgcb-3vf1-23dk
33
vulnerability VCID-rraw-1e9t-x3f3
34
vulnerability VCID-s17j-j45c-nqgs
35
vulnerability VCID-sn31-adaw-8kbz
36
vulnerability VCID-svvz-6tap-wqbe
37
vulnerability VCID-tq1x-gwac-6uc9
38
vulnerability VCID-tth9-nncy-5qap
39
vulnerability VCID-u8j3-25up-5bcb
40
vulnerability VCID-ubet-venh-tqct
41
vulnerability VCID-uujf-3fhp-8fgg
42
vulnerability VCID-wbtb-bfgn-4bhq
43
vulnerability VCID-wj9c-s6kt-tqag
44
vulnerability VCID-y7a9-2p1n-z7fx
45
vulnerability VCID-ye1p-fndf-h7b9
46
vulnerability VCID-ygcy-xz6u-1qav
47
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.4.7-1
aliases CVE-2012-3402
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8fnp-pegd-vkf3
14
url VCID-99yx-7yr3-dfht
vulnerability_id VCID-99yx-7yr3-dfht
summary gimp: GIMP ICO File Parsing Integer Overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5473.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5473.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-5473
reference_id
reference_type
scores
0
value 0.01642
scoring_system epss
scoring_elements 0.81894
published_at 2026-04-02T12:55:00Z
1
value 0.01642
scoring_system epss
scoring_elements 0.81986
published_at 2026-04-18T12:55:00Z
2
value 0.01642
scoring_system epss
scoring_elements 0.81939
published_at 2026-04-08T12:55:00Z
3
value 0.01642
scoring_system epss
scoring_elements 0.81947
published_at 2026-04-09T12:55:00Z
4
value 0.01642
scoring_system epss
scoring_elements 0.81967
published_at 2026-04-11T12:55:00Z
5
value 0.01642
scoring_system epss
scoring_elements 0.81956
published_at 2026-04-12T12:55:00Z
6
value 0.01642
scoring_system epss
scoring_elements 0.8195
published_at 2026-04-13T12:55:00Z
7
value 0.01642
scoring_system epss
scoring_elements 0.81917
published_at 2026-04-04T12:55:00Z
8
value 0.01642
scoring_system epss
scoring_elements 0.81913
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-5473
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5473
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5473
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105005
reference_id 1105005
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105005
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2370867
reference_id 2370867
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2370867
6
reference_url https://www.gimp.org/news/2025/05/18/gimp-3-0-4-released/#general-bugfixes
reference_id #general-bugfixes
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T16:48:26Z/
url https://www.gimp.org/news/2025/05/18/gimp-3-0-4-released/#general-bugfixes
7
reference_url https://access.redhat.com/errata/RHSA-2025:9162
reference_id RHSA-2025:9162
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9162
8
reference_url https://access.redhat.com/errata/RHSA-2025:9165
reference_id RHSA-2025:9165
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9165
9
reference_url https://access.redhat.com/errata/RHSA-2025:9308
reference_id RHSA-2025:9308
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9308
10
reference_url https://access.redhat.com/errata/RHSA-2025:9309
reference_id RHSA-2025:9309
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9309
11
reference_url https://access.redhat.com/errata/RHSA-2025:9310
reference_id RHSA-2025:9310
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9310
12
reference_url https://access.redhat.com/errata/RHSA-2025:9314
reference_id RHSA-2025:9314
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9314
13
reference_url https://access.redhat.com/errata/RHSA-2025:9315
reference_id RHSA-2025:9315
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9315
14
reference_url https://access.redhat.com/errata/RHSA-2025:9316
reference_id RHSA-2025:9316
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9316
15
reference_url https://access.redhat.com/errata/RHSA-2025:9501
reference_id RHSA-2025:9501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9501
16
reference_url https://access.redhat.com/errata/RHSA-2025:9569
reference_id RHSA-2025:9569
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9569
17
reference_url https://usn.ubuntu.com/8082-1/
reference_id USN-8082-1
reference_type
scores
url https://usn.ubuntu.com/8082-1/
18
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-321/
reference_id ZDI-25-321
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T16:48:26Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-321/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-5473
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-99yx-7yr3-dfht
15
url VCID-bcwp-42cm-g3et
vulnerability_id VCID-bcwp-42cm-g3et
summary Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44444.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44444.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-44444
reference_id
reference_type
scores
0
value 0.51792
scoring_system epss
scoring_elements 0.97887
published_at 2026-04-04T12:55:00Z
1
value 0.51792
scoring_system epss
scoring_elements 0.97911
published_at 2026-04-18T12:55:00Z
2
value 0.51792
scoring_system epss
scoring_elements 0.97897
published_at 2026-04-09T12:55:00Z
3
value 0.51792
scoring_system epss
scoring_elements 0.979
published_at 2026-04-11T12:55:00Z
4
value 0.51792
scoring_system epss
scoring_elements 0.97901
published_at 2026-04-12T12:55:00Z
5
value 0.51792
scoring_system epss
scoring_elements 0.97903
published_at 2026-04-13T12:55:00Z
6
value 0.51792
scoring_system epss
scoring_elements 0.9791
published_at 2026-04-16T12:55:00Z
7
value 0.51792
scoring_system epss
scoring_elements 0.9789
published_at 2026-04-07T12:55:00Z
8
value 0.51792
scoring_system epss
scoring_elements 0.97895
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-44444
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
6
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
reference_id 1055984
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2249946
reference_id 2249946
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2249946
9
reference_url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
reference_id gimp-2-10-36-released
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-05T14:16:55Z/
url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
10
reference_url https://security.gentoo.org/glsa/202501-02
reference_id GLSA-202501-02
reference_type
scores
url https://security.gentoo.org/glsa/202501-02
11
reference_url https://access.redhat.com/errata/RHSA-2024:0675
reference_id RHSA-2024:0675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0675
12
reference_url https://access.redhat.com/errata/RHSA-2024:0702
reference_id RHSA-2024:0702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0702
13
reference_url https://access.redhat.com/errata/RHSA-2024:0716
reference_id RHSA-2024:0716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0716
14
reference_url https://access.redhat.com/errata/RHSA-2024:0861
reference_id RHSA-2024:0861
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0861
15
reference_url https://access.redhat.com/errata/RHSA-2024:0862
reference_id RHSA-2024:0862
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0862
16
reference_url https://access.redhat.com/errata/RHSA-2024:0863
reference_id RHSA-2024:0863
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0863
17
reference_url https://access.redhat.com/errata/RHSA-2024:1007
reference_id RHSA-2024:1007
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1007
18
reference_url https://access.redhat.com/errata/RHSA-2024:10666
reference_id RHSA-2024:10666
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:10666
19
reference_url https://access.redhat.com/errata/RHSA-2024:1327
reference_id RHSA-2024:1327
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1327
20
reference_url https://access.redhat.com/errata/RHSA-2025:0746
reference_id RHSA-2025:0746
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0746
21
reference_url https://access.redhat.com/errata/RHSA-2025:3617
reference_id RHSA-2025:3617
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3617
22
reference_url https://access.redhat.com/errata/RHSA-2025:3629
reference_id RHSA-2025:3629
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3629
23
reference_url https://access.redhat.com/errata/RHSA-2025:7417
reference_id RHSA-2025:7417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:7417
24
reference_url https://usn.ubuntu.com/6521-1/
reference_id USN-6521-1
reference_type
scores
url https://usn.ubuntu.com/6521-1/
25
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1591/
reference_id ZDI-23-1591
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-05T14:16:55Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1591/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-1w47-u2aa-8uaj
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-3sqk-cbwn-tqa7
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-9v2z-2myu-bfd3
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-d967-53mv-13b6
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dkmg-nu4f-xbay
13
vulnerability VCID-dtpr-ndvm-5udg
14
vulnerability VCID-fraw-9hj8-vbhs
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-gfzg-1hvp-5ugd
17
vulnerability VCID-hj85-sup9-abft
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-ney7-z8qy-kuce
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-va44-vsem-xuf5
28
vulnerability VCID-wkrp-v537-x3hy
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2
aliases CVE-2023-44444, ZDI-CAN-22097
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bcwp-42cm-g3et
16
url VCID-bf8d-qkyh-auds
vulnerability_id VCID-bf8d-qkyh-auds
summary Gimp: context-dependent attackers to cause a denial of service
references
0
reference_url http://osvdb.org/43453
reference_id
reference_type
scores
url http://osvdb.org/43453
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3126.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3126.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-3126
reference_id
reference_type
scores
0
value 0.00894
scoring_system epss
scoring_elements 0.75525
published_at 2026-04-01T12:55:00Z
1
value 0.00894
scoring_system epss
scoring_elements 0.7563
published_at 2026-04-18T12:55:00Z
2
value 0.00894
scoring_system epss
scoring_elements 0.75589
published_at 2026-04-13T12:55:00Z
3
value 0.00894
scoring_system epss
scoring_elements 0.75626
published_at 2026-04-16T12:55:00Z
4
value 0.00894
scoring_system epss
scoring_elements 0.75527
published_at 2026-04-02T12:55:00Z
5
value 0.00894
scoring_system epss
scoring_elements 0.75557
published_at 2026-04-04T12:55:00Z
6
value 0.00894
scoring_system epss
scoring_elements 0.75537
published_at 2026-04-07T12:55:00Z
7
value 0.00894
scoring_system epss
scoring_elements 0.75579
published_at 2026-04-08T12:55:00Z
8
value 0.00894
scoring_system epss
scoring_elements 0.7559
published_at 2026-04-09T12:55:00Z
9
value 0.00894
scoring_system epss
scoring_elements 0.75615
published_at 2026-04-11T12:55:00Z
10
value 0.00894
scoring_system epss
scoring_elements 0.75596
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-3126
3
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=778604
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=778604
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3126
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3126
5
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/34789
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/34789
6
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.9
scoring_system cvssv2
scoring_elements AV:A/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
7
reference_url https://git.gnome.org/browse/gimp/commit/?id=323ecb73f7bf36788fb7066eb2d6678830cd5de7
reference_id
reference_type
scores
url https://git.gnome.org/browse/gimp/commit/?id=323ecb73f7bf36788fb7066eb2d6678830cd5de7
8
reference_url https://www.gimp.org/news/2017/05/11/gimp-2-8-22-released/
reference_id
reference_type
scores
url https://www.gimp.org/news/2017/05/11/gimp-2-8-22-released/
9
reference_url http://www.securityfocus.com/archive/1/470751/100/0/threaded
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/470751/100/0/threaded
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2051868
reference_id 2051868
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2051868
11
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885382
reference_id 885382
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885382
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-3126
reference_id CVE-2007-3126
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:N/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2007-3126
fixed_packages
0
url pkg:deb/debian/gimp@2.10.8-2
purl pkg:deb/debian/gimp@2.10.8-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-81y4-4cxp-bybu
5
vulnerability VCID-99yx-7yr3-dfht
6
vulnerability VCID-bcwp-42cm-g3et
7
vulnerability VCID-bhsc-qy1f-27dj
8
vulnerability VCID-dav9-9ar6-gkbn
9
vulnerability VCID-dtpr-ndvm-5udg
10
vulnerability VCID-eybg-sjmd-q7a2
11
vulnerability VCID-gdxp-wy9y-m3h1
12
vulnerability VCID-hrab-t25s-5ybg
13
vulnerability VCID-jy45-8uuz-y7bf
14
vulnerability VCID-krn9-65fh-sqgq
15
vulnerability VCID-qsyr-7tn1-uyhv
16
vulnerability VCID-rraw-1e9t-x3f3
17
vulnerability VCID-s17j-j45c-nqgs
18
vulnerability VCID-tth9-nncy-5qap
19
vulnerability VCID-ubet-venh-tqct
20
vulnerability VCID-uujf-3fhp-8fgg
21
vulnerability VCID-ygcy-xz6u-1qav
22
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.8-2
aliases CVE-2007-3126
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bf8d-qkyh-auds
17
url VCID-bhsc-qy1f-27dj
vulnerability_id VCID-bhsc-qy1f-27dj
summary gimp: Gimp Integer Overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6035.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6035.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-6035
reference_id
reference_type
scores
0
value 0.00013
scoring_system epss
scoring_elements 0.02245
published_at 2026-04-04T12:55:00Z
1
value 0.00013
scoring_system epss
scoring_elements 0.0224
published_at 2026-04-02T12:55:00Z
2
value 0.00013
scoring_system epss
scoring_elements 0.02242
published_at 2026-04-07T12:55:00Z
3
value 0.00013
scoring_system epss
scoring_elements 0.02243
published_at 2026-04-08T12:55:00Z
4
value 0.00035
scoring_system epss
scoring_elements 0.10329
published_at 2026-04-16T12:55:00Z
5
value 0.00035
scoring_system epss
scoring_elements 0.10516
published_at 2026-04-11T12:55:00Z
6
value 0.00035
scoring_system epss
scoring_elements 0.1046
published_at 2026-04-13T12:55:00Z
7
value 0.00035
scoring_system epss
scoring_elements 0.10482
published_at 2026-04-12T12:55:00Z
8
value 0.00035
scoring_system epss
scoring_elements 0.10301
published_at 2026-04-18T12:55:00Z
9
value 0.00035
scoring_system epss
scoring_elements 0.10485
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-6035
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6035
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6035
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/13518
reference_id 13518
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-13T15:40:56Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/13518
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2372515
reference_id 2372515
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-13T15:40:56Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2372515
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
10
reference_url https://access.redhat.com/security/cve/CVE-2025-6035
reference_id CVE-2025-6035
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-13T15:40:56Z/
url https://access.redhat.com/security/cve/CVE-2025-6035
11
reference_url https://usn.ubuntu.com/8082-1/
reference_id USN-8082-1
reference_type
scores
url https://usn.ubuntu.com/8082-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-6035
risk_score 2.8
exploitability 0.5
weighted_severity 5.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bhsc-qy1f-27dj
18
url VCID-bq1c-u55x-5beh
vulnerability_id VCID-bq1c-u55x-5beh
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id
reference_type
scores
url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
2
reference_url http://openwall.com/lists/oss-security/2011/01/03/2
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/03/2
3
reference_url http://openwall.com/lists/oss-security/2011/01/04/7
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/04/7
4
reference_url http://osvdb.org/70283
reference_id
reference_type
scores
url http://osvdb.org/70283
5
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4542.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4542.json
6
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-4542
reference_id
reference_type
scores
0
value 0.03676
scoring_system epss
scoring_elements 0.87929
published_at 2026-04-18T12:55:00Z
1
value 0.03676
scoring_system epss
scoring_elements 0.87858
published_at 2026-04-01T12:55:00Z
2
value 0.03676
scoring_system epss
scoring_elements 0.87868
published_at 2026-04-02T12:55:00Z
3
value 0.03676
scoring_system epss
scoring_elements 0.87881
published_at 2026-04-04T12:55:00Z
4
value 0.03676
scoring_system epss
scoring_elements 0.87884
published_at 2026-04-07T12:55:00Z
5
value 0.03676
scoring_system epss
scoring_elements 0.87906
published_at 2026-04-08T12:55:00Z
6
value 0.03676
scoring_system epss
scoring_elements 0.87912
published_at 2026-04-09T12:55:00Z
7
value 0.03676
scoring_system epss
scoring_elements 0.87924
published_at 2026-04-11T12:55:00Z
8
value 0.03676
scoring_system epss
scoring_elements 0.87916
published_at 2026-04-13T12:55:00Z
9
value 0.03676
scoring_system epss
scoring_elements 0.8793
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-4542
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4542
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4542
8
reference_url http://secunia.com/advisories/42771
reference_id
reference_type
scores
url http://secunia.com/advisories/42771
9
reference_url http://secunia.com/advisories/44750
reference_id
reference_type
scores
url http://secunia.com/advisories/44750
10
reference_url http://secunia.com/advisories/48236
reference_id
reference_type
scores
url http://secunia.com/advisories/48236
11
reference_url http://secunia.com/advisories/50737
reference_id
reference_type
scores
url http://secunia.com/advisories/50737
12
reference_url http://security.gentoo.org/glsa/glsa-201209-23.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-201209-23.xml
13
reference_url http://www.debian.org/security/2012/dsa-2426
reference_id
reference_type
scores
url http://www.debian.org/security/2012/dsa-2426
14
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
15
reference_url http://www.redhat.com/support/errata/RHSA-2011-0838.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0838.html
16
reference_url http://www.redhat.com/support/errata/RHSA-2011-0839.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0839.html
17
reference_url http://www.vupen.com/english/advisories/2011/0016
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2011/0016
18
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id 608497
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
19
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=703405
reference_id 703405
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=703405
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2010-4542
reference_id CVE-2010-4542
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2010-4542
22
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
23
reference_url https://access.redhat.com/errata/RHSA-2011:0838
reference_id RHSA-2011:0838
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0838
24
reference_url https://access.redhat.com/errata/RHSA-2011:0839
reference_id RHSA-2011:0839
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0839
25
reference_url https://usn.ubuntu.com/1109-1/
reference_id USN-1109-1
reference_type
scores
url https://usn.ubuntu.com/1109-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2010-4542
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bq1c-u55x-5beh
19
url VCID-cdfh-uhac-sbam
vulnerability_id VCID-cdfh-uhac-sbam
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id
reference_type
scores
url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
2
reference_url http://openwall.com/lists/oss-security/2011/01/03/2
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/03/2
3
reference_url http://openwall.com/lists/oss-security/2011/01/04/7
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/04/7
4
reference_url http://osvdb.org/70281
reference_id
reference_type
scores
url http://osvdb.org/70281
5
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4541.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4541.json
6
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-4541
reference_id
reference_type
scores
0
value 0.03062
scoring_system epss
scoring_elements 0.8674
published_at 2026-04-18T12:55:00Z
1
value 0.03062
scoring_system epss
scoring_elements 0.86721
published_at 2026-04-13T12:55:00Z
2
value 0.03062
scoring_system epss
scoring_elements 0.86735
published_at 2026-04-16T12:55:00Z
3
value 0.03062
scoring_system epss
scoring_elements 0.8667
published_at 2026-04-02T12:55:00Z
4
value 0.03062
scoring_system epss
scoring_elements 0.86689
published_at 2026-04-04T12:55:00Z
5
value 0.03062
scoring_system epss
scoring_elements 0.86688
published_at 2026-04-07T12:55:00Z
6
value 0.03062
scoring_system epss
scoring_elements 0.86707
published_at 2026-04-08T12:55:00Z
7
value 0.03062
scoring_system epss
scoring_elements 0.86717
published_at 2026-04-09T12:55:00Z
8
value 0.03062
scoring_system epss
scoring_elements 0.8673
published_at 2026-04-11T12:55:00Z
9
value 0.03062
scoring_system epss
scoring_elements 0.86727
published_at 2026-04-12T12:55:00Z
10
value 0.04027
scoring_system epss
scoring_elements 0.8843
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-4541
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4541
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4541
8
reference_url http://secunia.com/advisories/42771
reference_id
reference_type
scores
url http://secunia.com/advisories/42771
9
reference_url http://secunia.com/advisories/44750
reference_id
reference_type
scores
url http://secunia.com/advisories/44750
10
reference_url http://secunia.com/advisories/48236
reference_id
reference_type
scores
url http://secunia.com/advisories/48236
11
reference_url http://secunia.com/advisories/50737
reference_id
reference_type
scores
url http://secunia.com/advisories/50737
12
reference_url http://security.gentoo.org/glsa/glsa-201209-23.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-201209-23.xml
13
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/64581
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/64581
14
reference_url http://www.debian.org/security/2012/dsa-2426
reference_id
reference_type
scores
url http://www.debian.org/security/2012/dsa-2426
15
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
16
reference_url http://www.redhat.com/support/errata/RHSA-2011-0837.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0837.html
17
reference_url http://www.redhat.com/support/errata/RHSA-2011-0838.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0838.html
18
reference_url http://www.redhat.com/support/errata/RHSA-2011-0839.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0839.html
19
reference_url http://www.vupen.com/english/advisories/2011/0016
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2011/0016
20
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id 608497
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
21
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=703403
reference_id 703403
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=703403
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
23
reference_url https://nvd.nist.gov/vuln/detail/CVE-2010-4541
reference_id CVE-2010-4541
reference_type
scores
0
value 9.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:C/I:C/A:C
url https://nvd.nist.gov/vuln/detail/CVE-2010-4541
24
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
25
reference_url https://access.redhat.com/errata/RHSA-2011:0837
reference_id RHSA-2011:0837
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0837
26
reference_url https://access.redhat.com/errata/RHSA-2011:0838
reference_id RHSA-2011:0838
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0838
27
reference_url https://access.redhat.com/errata/RHSA-2011:0839
reference_id RHSA-2011:0839
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0839
28
reference_url https://usn.ubuntu.com/1109-1/
reference_id USN-1109-1
reference_type
scores
url https://usn.ubuntu.com/1109-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2010-4541
risk_score 4.2
exploitability 0.5
weighted_severity 8.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cdfh-uhac-sbam
20
url VCID-dav9-9ar6-gkbn
vulnerability_id VCID-dav9-9ar6-gkbn
summary Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30067.json
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-30067.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-30067
reference_id
reference_type
scores
0
value 0.00107
scoring_system epss
scoring_elements 0.29029
published_at 2026-04-02T12:55:00Z
1
value 0.00107
scoring_system epss
scoring_elements 0.29079
published_at 2026-04-04T12:55:00Z
2
value 0.00107
scoring_system epss
scoring_elements 0.28888
published_at 2026-04-07T12:55:00Z
3
value 0.00107
scoring_system epss
scoring_elements 0.28956
published_at 2026-04-08T12:55:00Z
4
value 0.00107
scoring_system epss
scoring_elements 0.28998
published_at 2026-04-09T12:55:00Z
5
value 0.00107
scoring_system epss
scoring_elements 0.29002
published_at 2026-04-11T12:55:00Z
6
value 0.00107
scoring_system epss
scoring_elements 0.28958
published_at 2026-04-12T12:55:00Z
7
value 0.00107
scoring_system epss
scoring_elements 0.28908
published_at 2026-04-18T12:55:00Z
8
value 0.00107
scoring_system epss
scoring_elements 0.28932
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-30067
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30067
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30067
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2087591
reference_id 2087591
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2087591
5
reference_url https://security.gentoo.org/glsa/202501-02
reference_id GLSA-202501-02
reference_type
scores
url https://security.gentoo.org/glsa/202501-02
6
reference_url https://access.redhat.com/errata/RHSA-2022:7978
reference_id RHSA-2022:7978
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:7978
7
reference_url https://usn.ubuntu.com/6521-1/
reference_id USN-6521-1
reference_type
scores
url https://usn.ubuntu.com/6521-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2022-30067
risk_score 2.8
exploitability 0.5
weighted_severity 5.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dav9-9ar6-gkbn
21
url VCID-dtpr-ndvm-5udg
vulnerability_id VCID-dtpr-ndvm-5udg
summary gimp: Multiple heap buffer overflows in TGA parser
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48797.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48797.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-48797
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24191
published_at 2026-04-18T12:55:00Z
1
value 0.00083
scoring_system epss
scoring_elements 0.24288
published_at 2026-04-11T12:55:00Z
2
value 0.00083
scoring_system epss
scoring_elements 0.24245
published_at 2026-04-12T12:55:00Z
3
value 0.00083
scoring_system epss
scoring_elements 0.24188
published_at 2026-04-13T12:55:00Z
4
value 0.00083
scoring_system epss
scoring_elements 0.24204
published_at 2026-04-16T12:55:00Z
5
value 0.00083
scoring_system epss
scoring_elements 0.24345
published_at 2026-04-02T12:55:00Z
6
value 0.00083
scoring_system epss
scoring_elements 0.24378
published_at 2026-04-04T12:55:00Z
7
value 0.00083
scoring_system epss
scoring_elements 0.24161
published_at 2026-04-07T12:55:00Z
8
value 0.00083
scoring_system epss
scoring_elements 0.24228
published_at 2026-04-08T12:55:00Z
9
value 0.00083
scoring_system epss
scoring_elements 0.24271
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-48797
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48797
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48797
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
reference_id 11822
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2368558
reference_id 2368558
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2368558
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
reference_id cpe:/a:redhat:rhel_aus:8.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
reference_id cpe:/a:redhat:rhel_aus:8.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
reference_id cpe:/a:redhat:rhel_aus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
reference_id cpe:/a:redhat:rhel_eus:9.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
reference_id cpe:/a:redhat:rhel_tus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
reference_id cpe:/a:redhat:rhel_tus:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
reference_id cpe:/o:redhat:rhel_els:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
20
reference_url https://access.redhat.com/security/cve/CVE-2025-48797
reference_id CVE-2025-48797
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/security/cve/CVE-2025-48797
21
reference_url https://access.redhat.com/errata/RHSA-2025:9162
reference_id RHSA-2025:9162
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9162
22
reference_url https://access.redhat.com/errata/RHSA-2025:9165
reference_id RHSA-2025:9165
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9165
23
reference_url https://access.redhat.com/errata/RHSA-2025:9308
reference_id RHSA-2025:9308
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9308
24
reference_url https://access.redhat.com/errata/RHSA-2025:9309
reference_id RHSA-2025:9309
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9309
25
reference_url https://access.redhat.com/errata/RHSA-2025:9310
reference_id RHSA-2025:9310
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9310
26
reference_url https://access.redhat.com/errata/RHSA-2025:9314
reference_id RHSA-2025:9314
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9314
27
reference_url https://access.redhat.com/errata/RHSA-2025:9315
reference_id RHSA-2025:9315
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9315
28
reference_url https://access.redhat.com/errata/RHSA-2025:9316
reference_id RHSA-2025:9316
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9316
29
reference_url https://access.redhat.com/errata/RHSA-2025:9501
reference_id RHSA-2025:9501
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9501
30
reference_url https://access.redhat.com/errata/RHSA-2025:9569
reference_id RHSA-2025:9569
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9569
31
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-48797
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dtpr-ndvm-5udg
22
url VCID-enq7-y48z-gybf
vulnerability_id VCID-enq7-y48z-gybf
summary 
GIMP is vulnerable to a buffer overflow which may lead to the execution of
    arbitrary code.
references
0
reference_url http://lists.suse.com/archive/suse-security-announce/2007-May/0005.html
reference_id
reference_type
scores
url http://lists.suse.com/archive/suse-security-announce/2007-May/0005.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2356.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2356.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-2356
reference_id
reference_type
scores
0
value 0.40424
scoring_system epss
scoring_elements 0.97329
published_at 2026-04-01T12:55:00Z
1
value 0.41011
scoring_system epss
scoring_elements 0.97362
published_at 2026-04-02T12:55:00Z
2
value 0.41011
scoring_system epss
scoring_elements 0.97367
published_at 2026-04-07T12:55:00Z
3
value 0.41011
scoring_system epss
scoring_elements 0.97374
published_at 2026-04-08T12:55:00Z
4
value 0.41011
scoring_system epss
scoring_elements 0.97375
published_at 2026-04-09T12:55:00Z
5
value 0.41011
scoring_system epss
scoring_elements 0.97377
published_at 2026-04-11T12:55:00Z
6
value 0.41011
scoring_system epss
scoring_elements 0.97378
published_at 2026-04-12T12:55:00Z
7
value 0.41011
scoring_system epss
scoring_elements 0.97379
published_at 2026-04-13T12:55:00Z
8
value 0.41011
scoring_system epss
scoring_elements 0.97387
published_at 2026-04-16T12:55:00Z
9
value 0.41011
scoring_system epss
scoring_elements 0.9739
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-2356
3
reference_url https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=238422
reference_id
reference_type
scores
url https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=238422
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2356
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2356
5
reference_url http://secunia.com/advisories/25012
reference_id
reference_type
scores
url http://secunia.com/advisories/25012
6
reference_url http://secunia.com/advisories/25111
reference_id
reference_type
scores
url http://secunia.com/advisories/25111
7
reference_url http://secunia.com/advisories/25167
reference_id
reference_type
scores
url http://secunia.com/advisories/25167
8
reference_url http://secunia.com/advisories/25239
reference_id
reference_type
scores
url http://secunia.com/advisories/25239
9
reference_url http://secunia.com/advisories/25346
reference_id
reference_type
scores
url http://secunia.com/advisories/25346
10
reference_url http://secunia.com/advisories/25359
reference_id
reference_type
scores
url http://secunia.com/advisories/25359
11
reference_url http://secunia.com/advisories/25466
reference_id
reference_type
scores
url http://secunia.com/advisories/25466
12
reference_url http://secunia.com/advisories/25573
reference_id
reference_type
scores
url http://secunia.com/advisories/25573
13
reference_url http://secunia.com/advisories/28114
reference_id
reference_type
scores
url http://secunia.com/advisories/28114
14
reference_url http://security.gentoo.org/glsa/glsa-200705-08.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-200705-08.xml
15
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/33911
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/33911
16
reference_url https://issues.rpath.com/browse/RPL-1318
reference_id
reference_type
scores
url https://issues.rpath.com/browse/RPL-1318
17
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10054
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10054
18
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5960
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5960
19
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1
reference_id
reference_type
scores
url http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1
20
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1
reference_id
reference_type
scores
url http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1
21
reference_url http://www.debian.org/security/2007/dsa-1301
reference_id
reference_type
scores
url http://www.debian.org/security/2007/dsa-1301
22
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2007:108
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2007:108
23
reference_url http://www.redhat.com/support/errata/RHSA-2007-0343.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2007-0343.html
24
reference_url http://www.securityfocus.com/archive/1/467231/100/0/threaded
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/467231/100/0/threaded
25
reference_url http://www.securityfocus.com/bid/23680
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/23680
26
reference_url http://www.securitytracker.com/id?1018092
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1018092
27
reference_url http://www.ubuntu.com/usn/usn-467-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/usn-467-1
28
reference_url http://www.vupen.com/english/advisories/2007/1560
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/1560
29
reference_url http://www.vupen.com/english/advisories/2007/4241
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/4241
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=238420
reference_id 238420
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=238420
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.2.14:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.2.14:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.2.14:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-2356
reference_id CVE-2007-2356
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2007-2356
33
reference_url https://security.gentoo.org/glsa/200705-08
reference_id GLSA-200705-08
reference_type
scores
url https://security.gentoo.org/glsa/200705-08
34
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/3801.c
reference_id OSVDB-35417;CVE-2007-2356
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/3801.c
35
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows_x86/local/3888.c
reference_id OSVDB-35417;CVE-2007-2356
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows_x86/local/3888.c
36
reference_url https://access.redhat.com/errata/RHSA-2007:0343
reference_id RHSA-2007:0343
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0343
37
reference_url https://usn.ubuntu.com/467-1/
reference_id USN-467-1
reference_type
scores
url https://usn.ubuntu.com/467-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.4.7-1
purl pkg:deb/debian/gimp@2.4.7-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5ds4-62sx-xud3
8
vulnerability VCID-5yx1-7s7z-m3ar
9
vulnerability VCID-6uzq-6ejf-kudc
10
vulnerability VCID-6yt4-22x4-2kdk
11
vulnerability VCID-81y4-4cxp-bybu
12
vulnerability VCID-99yx-7yr3-dfht
13
vulnerability VCID-bcwp-42cm-g3et
14
vulnerability VCID-bf8d-qkyh-auds
15
vulnerability VCID-bhsc-qy1f-27dj
16
vulnerability VCID-bq1c-u55x-5beh
17
vulnerability VCID-cdfh-uhac-sbam
18
vulnerability VCID-dav9-9ar6-gkbn
19
vulnerability VCID-dtpr-ndvm-5udg
20
vulnerability VCID-eybg-sjmd-q7a2
21
vulnerability VCID-fta8-9na3-u3hb
22
vulnerability VCID-g7zy-qgvc-cueg
23
vulnerability VCID-gdxp-wy9y-m3h1
24
vulnerability VCID-hkc8-4uw7-2yc3
25
vulnerability VCID-hrab-t25s-5ybg
26
vulnerability VCID-jy45-8uuz-y7bf
27
vulnerability VCID-krn9-65fh-sqgq
28
vulnerability VCID-nb8e-umcc-yudg
29
vulnerability VCID-q23d-29ut-uyhd
30
vulnerability VCID-qsyr-7tn1-uyhv
31
vulnerability VCID-r1ds-par2-5kb4
32
vulnerability VCID-rgcb-3vf1-23dk
33
vulnerability VCID-rraw-1e9t-x3f3
34
vulnerability VCID-s17j-j45c-nqgs
35
vulnerability VCID-sn31-adaw-8kbz
36
vulnerability VCID-svvz-6tap-wqbe
37
vulnerability VCID-tq1x-gwac-6uc9
38
vulnerability VCID-tth9-nncy-5qap
39
vulnerability VCID-u8j3-25up-5bcb
40
vulnerability VCID-ubet-venh-tqct
41
vulnerability VCID-uujf-3fhp-8fgg
42
vulnerability VCID-wbtb-bfgn-4bhq
43
vulnerability VCID-wj9c-s6kt-tqag
44
vulnerability VCID-y7a9-2p1n-z7fx
45
vulnerability VCID-ye1p-fndf-h7b9
46
vulnerability VCID-ygcy-xz6u-1qav
47
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.4.7-1
aliases CVE-2007-2356
risk_score 10.0
exploitability 2.0
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-enq7-y48z-gybf
23
url VCID-eybg-sjmd-q7a2
vulnerability_id VCID-eybg-sjmd-q7a2
summary Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44443.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44443.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-44443
reference_id
reference_type
scores
0
value 0.63756
scoring_system epss
scoring_elements 0.98408
published_at 2026-04-02T12:55:00Z
1
value 0.63756
scoring_system epss
scoring_elements 0.98425
published_at 2026-04-18T12:55:00Z
2
value 0.63756
scoring_system epss
scoring_elements 0.98414
published_at 2026-04-07T12:55:00Z
3
value 0.63756
scoring_system epss
scoring_elements 0.98417
published_at 2026-04-08T12:55:00Z
4
value 0.63756
scoring_system epss
scoring_elements 0.98418
published_at 2026-04-09T12:55:00Z
5
value 0.63756
scoring_system epss
scoring_elements 0.98421
published_at 2026-04-13T12:55:00Z
6
value 0.63756
scoring_system epss
scoring_elements 0.98426
published_at 2026-04-16T12:55:00Z
7
value 0.63756
scoring_system epss
scoring_elements 0.98411
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-44443
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
6
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
reference_id 1055984
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2249944
reference_id 2249944
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2249944
9
reference_url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
reference_id gimp-2-10-36-released
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-05T17:14:40Z/
url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
10
reference_url https://security.gentoo.org/glsa/202501-02
reference_id GLSA-202501-02
reference_type
scores
url https://security.gentoo.org/glsa/202501-02
11
reference_url https://access.redhat.com/errata/RHSA-2024:0675
reference_id RHSA-2024:0675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0675
12
reference_url https://access.redhat.com/errata/RHSA-2024:0702
reference_id RHSA-2024:0702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0702
13
reference_url https://access.redhat.com/errata/RHSA-2024:0716
reference_id RHSA-2024:0716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0716
14
reference_url https://access.redhat.com/errata/RHSA-2025:0746
reference_id RHSA-2025:0746
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0746
15
reference_url https://access.redhat.com/errata/RHSA-2025:3617
reference_id RHSA-2025:3617
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3617
16
reference_url https://access.redhat.com/errata/RHSA-2025:3629
reference_id RHSA-2025:3629
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3629
17
reference_url https://access.redhat.com/errata/RHSA-2025:7417
reference_id RHSA-2025:7417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:7417
18
reference_url https://usn.ubuntu.com/6521-1/
reference_id USN-6521-1
reference_type
scores
url https://usn.ubuntu.com/6521-1/
19
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1593/
reference_id ZDI-23-1593
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-05T17:14:40Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1593/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-1w47-u2aa-8uaj
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-3sqk-cbwn-tqa7
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-9v2z-2myu-bfd3
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-d967-53mv-13b6
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dkmg-nu4f-xbay
13
vulnerability VCID-dtpr-ndvm-5udg
14
vulnerability VCID-fraw-9hj8-vbhs
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-gfzg-1hvp-5ugd
17
vulnerability VCID-hj85-sup9-abft
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-ney7-z8qy-kuce
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-va44-vsem-xuf5
28
vulnerability VCID-wkrp-v537-x3hy
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2
aliases CVE-2023-44443, ZDI-CAN-22096
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eybg-sjmd-q7a2
24
url VCID-fta8-9na3-u3hb
vulnerability_id VCID-fta8-9na3-u3hb
summary several
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1913.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1913.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1913
reference_id
reference_type
scores
0
value 0.02017
scoring_system epss
scoring_elements 0.83676
published_at 2026-04-01T12:55:00Z
1
value 0.02017
scoring_system epss
scoring_elements 0.83689
published_at 2026-04-02T12:55:00Z
2
value 0.02017
scoring_system epss
scoring_elements 0.83703
published_at 2026-04-04T12:55:00Z
3
value 0.02017
scoring_system epss
scoring_elements 0.83705
published_at 2026-04-07T12:55:00Z
4
value 0.02017
scoring_system epss
scoring_elements 0.83729
published_at 2026-04-08T12:55:00Z
5
value 0.02017
scoring_system epss
scoring_elements 0.83736
published_at 2026-04-09T12:55:00Z
6
value 0.02017
scoring_system epss
scoring_elements 0.83752
published_at 2026-04-11T12:55:00Z
7
value 0.02017
scoring_system epss
scoring_elements 0.83746
published_at 2026-04-12T12:55:00Z
8
value 0.02017
scoring_system epss
scoring_elements 0.83741
published_at 2026-04-13T12:55:00Z
9
value 0.02017
scoring_system epss
scoring_elements 0.83775
published_at 2026-04-16T12:55:00Z
10
value 0.02017
scoring_system epss
scoring_elements 0.83776
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1913
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1913
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1913
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1978
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1978
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731305
reference_id 731305
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731305
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=947868
reference_id 947868
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=947868
6
reference_url https://security.gentoo.org/glsa/201603-01
reference_id GLSA-201603-01
reference_type
scores
url https://security.gentoo.org/glsa/201603-01
7
reference_url https://access.redhat.com/errata/RHSA-2013:1778
reference_id RHSA-2013:1778
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:1778
8
reference_url https://usn.ubuntu.com/2051-1/
reference_id USN-2051-1
reference_type
scores
url https://usn.ubuntu.com/2051-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
1
url pkg:deb/debian/gimp@2.8.14-1
purl pkg:deb/debian/gimp@2.8.14-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1
aliases CVE-2013-1913
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fta8-9na3-u3hb
25
url VCID-g7zy-qgvc-cueg
vulnerability_id VCID-g7zy-qgvc-cueg
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17784.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17784.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17784
reference_id
reference_type
scores
0
value 0.00448
scoring_system epss
scoring_elements 0.63464
published_at 2026-04-01T12:55:00Z
1
value 0.00448
scoring_system epss
scoring_elements 0.63596
published_at 2026-04-18T12:55:00Z
2
value 0.00448
scoring_system epss
scoring_elements 0.63584
published_at 2026-04-09T12:55:00Z
3
value 0.00448
scoring_system epss
scoring_elements 0.636
published_at 2026-04-11T12:55:00Z
4
value 0.00448
scoring_system epss
scoring_elements 0.63585
published_at 2026-04-12T12:55:00Z
5
value 0.00448
scoring_system epss
scoring_elements 0.63588
published_at 2026-04-16T12:55:00Z
6
value 0.00448
scoring_system epss
scoring_elements 0.63524
published_at 2026-04-02T12:55:00Z
7
value 0.00448
scoring_system epss
scoring_elements 0.63551
published_at 2026-04-13T12:55:00Z
8
value 0.00448
scoring_system epss
scoring_elements 0.63516
published_at 2026-04-07T12:55:00Z
9
value 0.00448
scoring_system epss
scoring_elements 0.63567
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17784
2
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=790784
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=790784
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.1
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:N/I:N/A:P
1
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
11
reference_url https://www.debian.org/security/2017/dsa-4077
reference_id
reference_type
scores
url https://www.debian.org/security/2017/dsa-4077
12
reference_url http://www.openwall.com/lists/oss-security/2017/12/19/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/12/19/5
13
reference_url http://www.securityfocus.com/bid/102899
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/102899
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1529144
reference_id 1529144
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1529144
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884925
reference_id 884925
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884925
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17784
reference_id CVE-2017-17784
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-17784
22
reference_url https://usn.ubuntu.com/3539-1/
reference_id USN-3539-1
reference_type
scores
url https://usn.ubuntu.com/3539-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
purl pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1%252Bdeb8u2
1
url pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
purl pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-4wae-t183-yydb
5
vulnerability VCID-81y4-4cxp-bybu
6
vulnerability VCID-99yx-7yr3-dfht
7
vulnerability VCID-bcwp-42cm-g3et
8
vulnerability VCID-bf8d-qkyh-auds
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-dav9-9ar6-gkbn
11
vulnerability VCID-dtpr-ndvm-5udg
12
vulnerability VCID-eybg-sjmd-q7a2
13
vulnerability VCID-g7zy-qgvc-cueg
14
vulnerability VCID-gdxp-wy9y-m3h1
15
vulnerability VCID-hkc8-4uw7-2yc3
16
vulnerability VCID-hrab-t25s-5ybg
17
vulnerability VCID-jy45-8uuz-y7bf
18
vulnerability VCID-krn9-65fh-sqgq
19
vulnerability VCID-q23d-29ut-uyhd
20
vulnerability VCID-qsyr-7tn1-uyhv
21
vulnerability VCID-r1ds-par2-5kb4
22
vulnerability VCID-rraw-1e9t-x3f3
23
vulnerability VCID-s17j-j45c-nqgs
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-wj9c-s6kt-tqag
28
vulnerability VCID-ygcy-xz6u-1qav
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.18-1%252Bdeb9u1
2
url pkg:deb/debian/gimp@2.10.8-2
purl pkg:deb/debian/gimp@2.10.8-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-81y4-4cxp-bybu
5
vulnerability VCID-99yx-7yr3-dfht
6
vulnerability VCID-bcwp-42cm-g3et
7
vulnerability VCID-bhsc-qy1f-27dj
8
vulnerability VCID-dav9-9ar6-gkbn
9
vulnerability VCID-dtpr-ndvm-5udg
10
vulnerability VCID-eybg-sjmd-q7a2
11
vulnerability VCID-gdxp-wy9y-m3h1
12
vulnerability VCID-hrab-t25s-5ybg
13
vulnerability VCID-jy45-8uuz-y7bf
14
vulnerability VCID-krn9-65fh-sqgq
15
vulnerability VCID-qsyr-7tn1-uyhv
16
vulnerability VCID-rraw-1e9t-x3f3
17
vulnerability VCID-s17j-j45c-nqgs
18
vulnerability VCID-tth9-nncy-5qap
19
vulnerability VCID-ubet-venh-tqct
20
vulnerability VCID-uujf-3fhp-8fgg
21
vulnerability VCID-ygcy-xz6u-1qav
22
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.8-2
aliases CVE-2017-17784
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g7zy-qgvc-cueg
26
url VCID-gdxp-wy9y-m3h1
vulnerability_id VCID-gdxp-wy9y-m3h1
summary gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10922.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10922.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-10922
reference_id
reference_type
scores
0
value 0.00077
scoring_system epss
scoring_elements 0.23142
published_at 2026-04-02T12:55:00Z
1
value 0.00077
scoring_system epss
scoring_elements 0.22975
published_at 2026-04-07T12:55:00Z
2
value 0.00077
scoring_system epss
scoring_elements 0.23186
published_at 2026-04-04T12:55:00Z
3
value 0.00092
scoring_system epss
scoring_elements 0.25786
published_at 2026-04-13T12:55:00Z
4
value 0.00092
scoring_system epss
scoring_elements 0.25883
published_at 2026-04-11T12:55:00Z
5
value 0.00092
scoring_system epss
scoring_elements 0.25842
published_at 2026-04-12T12:55:00Z
6
value 0.00092
scoring_system epss
scoring_elements 0.25789
published_at 2026-04-16T12:55:00Z
7
value 0.00092
scoring_system epss
scoring_elements 0.25772
published_at 2026-04-18T12:55:00Z
8
value 0.00092
scoring_system epss
scoring_elements 0.25821
published_at 2026-04-08T12:55:00Z
9
value 0.00092
scoring_system epss
scoring_elements 0.25873
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-10922
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10922
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10922
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116459
reference_id 1116459
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116459
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2407188
reference_id 2407188
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2407188
6
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/3d909166463731e94dfe62042d76225ecfc4c1e4
reference_id 3d909166463731e94dfe62042d76225ecfc4c1e4
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-30T03:56:09Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/3d909166463731e94dfe62042d76225ecfc4c1e4
7
reference_url https://access.redhat.com/errata/RHSA-2025:21968
reference_id RHSA-2025:21968
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:21968
8
reference_url https://access.redhat.com/errata/RHSA-2025:22417
reference_id RHSA-2025:22417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22417
9
reference_url https://access.redhat.com/errata/RHSA-2025:22445
reference_id RHSA-2025:22445
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22445
10
reference_url https://access.redhat.com/errata/RHSA-2025:22496
reference_id RHSA-2025:22496
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22496
11
reference_url https://access.redhat.com/errata/RHSA-2025:22497
reference_id RHSA-2025:22497
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22497
12
reference_url https://access.redhat.com/errata/RHSA-2025:22498
reference_id RHSA-2025:22498
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22498
13
reference_url https://access.redhat.com/errata/RHSA-2025:22866
reference_id RHSA-2025:22866
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22866
14
reference_url https://access.redhat.com/errata/RHSA-2025:23857
reference_id RHSA-2025:23857
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23857
15
reference_url https://access.redhat.com/errata/RHSA-2026:0027
reference_id RHSA-2026:0027
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0027
16
reference_url https://access.redhat.com/errata/RHSA-2026:0250
reference_id RHSA-2026:0250
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0250
17
reference_url https://access.redhat.com/errata/RHSA-2026:0356
reference_id RHSA-2026:0356
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0356
18
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
19
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-911/
reference_id ZDI-25-911
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-30T03:56:09Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-911/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-10922
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gdxp-wy9y-m3h1
27
url VCID-hkc8-4uw7-2yc3
vulnerability_id VCID-hkc8-4uw7-2yc3
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17788.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17788.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17788
reference_id
reference_type
scores
0
value 0.005
scoring_system epss
scoring_elements 0.65887
published_at 2026-04-01T12:55:00Z
1
value 0.005
scoring_system epss
scoring_elements 0.66012
published_at 2026-04-18T12:55:00Z
2
value 0.005
scoring_system epss
scoring_elements 0.66007
published_at 2026-04-11T12:55:00Z
3
value 0.005
scoring_system epss
scoring_elements 0.65994
published_at 2026-04-12T12:55:00Z
4
value 0.005
scoring_system epss
scoring_elements 0.65964
published_at 2026-04-13T12:55:00Z
5
value 0.005
scoring_system epss
scoring_elements 0.65998
published_at 2026-04-16T12:55:00Z
6
value 0.005
scoring_system epss
scoring_elements 0.65928
published_at 2026-04-02T12:55:00Z
7
value 0.005
scoring_system epss
scoring_elements 0.65958
published_at 2026-04-04T12:55:00Z
8
value 0.005
scoring_system epss
scoring_elements 0.65925
published_at 2026-04-07T12:55:00Z
9
value 0.005
scoring_system epss
scoring_elements 0.65976
published_at 2026-04-08T12:55:00Z
10
value 0.005
scoring_system epss
scoring_elements 0.65988
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17788
2
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=790783
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=790783
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.1
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:N/I:N/A:P
1
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
11
reference_url https://www.debian.org/security/2017/dsa-4077
reference_id
reference_type
scores
url https://www.debian.org/security/2017/dsa-4077
12
reference_url http://www.openwall.com/lists/oss-security/2017/12/19/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/12/19/5
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1529141
reference_id 1529141
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1529141
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885347
reference_id 885347
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885347
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17788
reference_id CVE-2017-17788
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-17788
21
reference_url https://usn.ubuntu.com/3539-1/
reference_id USN-3539-1
reference_type
scores
url https://usn.ubuntu.com/3539-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
purl pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1%252Bdeb8u2
1
url pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
purl pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-4wae-t183-yydb
5
vulnerability VCID-81y4-4cxp-bybu
6
vulnerability VCID-99yx-7yr3-dfht
7
vulnerability VCID-bcwp-42cm-g3et
8
vulnerability VCID-bf8d-qkyh-auds
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-dav9-9ar6-gkbn
11
vulnerability VCID-dtpr-ndvm-5udg
12
vulnerability VCID-eybg-sjmd-q7a2
13
vulnerability VCID-g7zy-qgvc-cueg
14
vulnerability VCID-gdxp-wy9y-m3h1
15
vulnerability VCID-hkc8-4uw7-2yc3
16
vulnerability VCID-hrab-t25s-5ybg
17
vulnerability VCID-jy45-8uuz-y7bf
18
vulnerability VCID-krn9-65fh-sqgq
19
vulnerability VCID-q23d-29ut-uyhd
20
vulnerability VCID-qsyr-7tn1-uyhv
21
vulnerability VCID-r1ds-par2-5kb4
22
vulnerability VCID-rraw-1e9t-x3f3
23
vulnerability VCID-s17j-j45c-nqgs
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-wj9c-s6kt-tqag
28
vulnerability VCID-ygcy-xz6u-1qav
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.18-1%252Bdeb9u1
2
url pkg:deb/debian/gimp@2.10.8-2
purl pkg:deb/debian/gimp@2.10.8-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-81y4-4cxp-bybu
5
vulnerability VCID-99yx-7yr3-dfht
6
vulnerability VCID-bcwp-42cm-g3et
7
vulnerability VCID-bhsc-qy1f-27dj
8
vulnerability VCID-dav9-9ar6-gkbn
9
vulnerability VCID-dtpr-ndvm-5udg
10
vulnerability VCID-eybg-sjmd-q7a2
11
vulnerability VCID-gdxp-wy9y-m3h1
12
vulnerability VCID-hrab-t25s-5ybg
13
vulnerability VCID-jy45-8uuz-y7bf
14
vulnerability VCID-krn9-65fh-sqgq
15
vulnerability VCID-qsyr-7tn1-uyhv
16
vulnerability VCID-rraw-1e9t-x3f3
17
vulnerability VCID-s17j-j45c-nqgs
18
vulnerability VCID-tth9-nncy-5qap
19
vulnerability VCID-ubet-venh-tqct
20
vulnerability VCID-uujf-3fhp-8fgg
21
vulnerability VCID-ygcy-xz6u-1qav
22
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.8-2
aliases CVE-2017-17788
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hkc8-4uw7-2yc3
28
url VCID-hrab-t25s-5ybg
vulnerability_id VCID-hrab-t25s-5ybg
summary gimp: GIMP: Remote Code Execution via JP2 file parsing heap-based buffer overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14425.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14425.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-14425
reference_id
reference_type
scores
0
value 0.00105
scoring_system epss
scoring_elements 0.28681
published_at 2026-04-02T12:55:00Z
1
value 0.00105
scoring_system epss
scoring_elements 0.28546
published_at 2026-04-18T12:55:00Z
2
value 0.00105
scoring_system epss
scoring_elements 0.28642
published_at 2026-04-09T12:55:00Z
3
value 0.00105
scoring_system epss
scoring_elements 0.28643
published_at 2026-04-11T12:55:00Z
4
value 0.00105
scoring_system epss
scoring_elements 0.28599
published_at 2026-04-12T12:55:00Z
5
value 0.00105
scoring_system epss
scoring_elements 0.28551
published_at 2026-04-13T12:55:00Z
6
value 0.00105
scoring_system epss
scoring_elements 0.28571
published_at 2026-04-16T12:55:00Z
7
value 0.00105
scoring_system epss
scoring_elements 0.2873
published_at 2026-04-04T12:55:00Z
8
value 0.00105
scoring_system epss
scoring_elements 0.28536
published_at 2026-04-07T12:55:00Z
9
value 0.00105
scoring_system epss
scoring_elements 0.28601
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-14425
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14425
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14425
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2424767
reference_id 2424767
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2424767
5
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/cd1c88a0364ad1444c06536731972a99bd8643fd
reference_id cd1c88a0364ad1444c06536731972a99bd8643fd
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-02T14:03:55Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/cd1c88a0364ad1444c06536731972a99bd8643fd
6
reference_url https://access.redhat.com/errata/RHSA-2026:0914
reference_id RHSA-2026:0914
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0914
7
reference_url https://access.redhat.com/errata/RHSA-2026:1511
reference_id RHSA-2026:1511
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1511
8
reference_url https://access.redhat.com/errata/RHSA-2026:1585
reference_id RHSA-2026:1585
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1585
9
reference_url https://access.redhat.com/errata/RHSA-2026:1586
reference_id RHSA-2026:1586
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1586
10
reference_url https://access.redhat.com/errata/RHSA-2026:1587
reference_id RHSA-2026:1587
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1587
11
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
12
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-1139/
reference_id ZDI-25-1139
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-02T14:03:55Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-1139/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-14425
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hrab-t25s-5ybg
29
url VCID-jy45-8uuz-y7bf
vulnerability_id VCID-jy45-8uuz-y7bf
summary gimp: GIMP: Remote Code Execution via ICO File Parsing Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0797.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-0797.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-0797
reference_id
reference_type
scores
0
value 0.00037
scoring_system epss
scoring_elements 0.11075
published_at 2026-04-02T12:55:00Z
1
value 0.00037
scoring_system epss
scoring_elements 0.10903
published_at 2026-04-18T12:55:00Z
2
value 0.00037
scoring_system epss
scoring_elements 0.1109
published_at 2026-04-09T12:55:00Z
3
value 0.00037
scoring_system epss
scoring_elements 0.11093
published_at 2026-04-11T12:55:00Z
4
value 0.00037
scoring_system epss
scoring_elements 0.11061
published_at 2026-04-12T12:55:00Z
5
value 0.00037
scoring_system epss
scoring_elements 0.11039
published_at 2026-04-13T12:55:00Z
6
value 0.00037
scoring_system epss
scoring_elements 0.10893
published_at 2026-04-16T12:55:00Z
7
value 0.00037
scoring_system epss
scoring_elements 0.11138
published_at 2026-04-04T12:55:00Z
8
value 0.00037
scoring_system epss
scoring_elements 0.10958
published_at 2026-04-07T12:55:00Z
9
value 0.00037
scoring_system epss
scoring_elements 0.11036
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-0797
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0797
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0797
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1128601
reference_id 1128601
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1128601
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2441524
reference_id 2441524
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2441524
6
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/69cc6b1a6645dc9c4d7b484483dbe6a84b922b9c
reference_id 69cc6b1a6645dc9c4d7b484483dbe6a84b922b9c
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-25T04:55:45Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/69cc6b1a6645dc9c4d7b484483dbe6a84b922b9c
7
reference_url https://access.redhat.com/errata/RHSA-2026:4173
reference_id RHSA-2026:4173
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4173
8
reference_url https://access.redhat.com/errata/RHSA-2026:5113
reference_id RHSA-2026:5113
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5113
9
reference_url https://access.redhat.com/errata/RHSA-2026:5388
reference_id RHSA-2026:5388
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5388
10
reference_url https://access.redhat.com/errata/RHSA-2026:5389
reference_id RHSA-2026:5389
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5389
11
reference_url https://access.redhat.com/errata/RHSA-2026:5390
reference_id RHSA-2026:5390
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5390
12
reference_url https://access.redhat.com/errata/RHSA-2026:5391
reference_id RHSA-2026:5391
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5391
13
reference_url https://access.redhat.com/errata/RHSA-2026:5434
reference_id RHSA-2026:5434
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5434
14
reference_url https://access.redhat.com/errata/RHSA-2026:5435
reference_id RHSA-2026:5435
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5435
15
reference_url https://access.redhat.com/errata/RHSA-2026:5436
reference_id RHSA-2026:5436
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5436
16
reference_url https://access.redhat.com/errata/RHSA-2026:5437
reference_id RHSA-2026:5437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5437
17
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-050/
reference_id ZDI-26-050
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-25T04:55:45Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-050/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2026-0797
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jy45-8uuz-y7bf
30
url VCID-krn9-65fh-sqgq
vulnerability_id VCID-krn9-65fh-sqgq
summary gimp: Multiple use after free in XCF parser
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48798.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48798.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-48798
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24191
published_at 2026-04-18T12:55:00Z
1
value 0.00083
scoring_system epss
scoring_elements 0.24345
published_at 2026-04-02T12:55:00Z
2
value 0.00083
scoring_system epss
scoring_elements 0.24271
published_at 2026-04-09T12:55:00Z
3
value 0.00083
scoring_system epss
scoring_elements 0.24288
published_at 2026-04-11T12:55:00Z
4
value 0.00083
scoring_system epss
scoring_elements 0.24245
published_at 2026-04-12T12:55:00Z
5
value 0.00083
scoring_system epss
scoring_elements 0.24188
published_at 2026-04-13T12:55:00Z
6
value 0.00083
scoring_system epss
scoring_elements 0.24204
published_at 2026-04-16T12:55:00Z
7
value 0.00083
scoring_system epss
scoring_elements 0.24378
published_at 2026-04-04T12:55:00Z
8
value 0.00083
scoring_system epss
scoring_elements 0.24161
published_at 2026-04-07T12:55:00Z
9
value 0.00083
scoring_system epss
scoring_elements 0.24228
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-48798
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48798
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48798
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
reference_id 11822
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2368557
reference_id 2368557
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2368557
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
reference_id cpe:/a:redhat:rhel_aus:8.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
reference_id cpe:/a:redhat:rhel_aus:8.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
reference_id cpe:/a:redhat:rhel_aus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
reference_id cpe:/a:redhat:rhel_eus:9.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
reference_id cpe:/a:redhat:rhel_tus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
reference_id cpe:/a:redhat:rhel_tus:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
reference_id cpe:/o:redhat:rhel_els:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
20
reference_url https://access.redhat.com/security/cve/CVE-2025-48798
reference_id CVE-2025-48798
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/security/cve/CVE-2025-48798
21
reference_url https://access.redhat.com/errata/RHSA-2025:9162
reference_id RHSA-2025:9162
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9162
22
reference_url https://access.redhat.com/errata/RHSA-2025:9165
reference_id RHSA-2025:9165
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9165
23
reference_url https://access.redhat.com/errata/RHSA-2025:9308
reference_id RHSA-2025:9308
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9308
24
reference_url https://access.redhat.com/errata/RHSA-2025:9309
reference_id RHSA-2025:9309
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9309
25
reference_url https://access.redhat.com/errata/RHSA-2025:9310
reference_id RHSA-2025:9310
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9310
26
reference_url https://access.redhat.com/errata/RHSA-2025:9314
reference_id RHSA-2025:9314
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9314
27
reference_url https://access.redhat.com/errata/RHSA-2025:9315
reference_id RHSA-2025:9315
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9315
28
reference_url https://access.redhat.com/errata/RHSA-2025:9316
reference_id RHSA-2025:9316
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9316
29
reference_url https://access.redhat.com/errata/RHSA-2025:9501
reference_id RHSA-2025:9501
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9501
30
reference_url https://access.redhat.com/errata/RHSA-2025:9569
reference_id RHSA-2025:9569
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9569
31
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-48798
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-krn9-65fh-sqgq
31
url VCID-nb8e-umcc-yudg
vulnerability_id VCID-nb8e-umcc-yudg
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code.
references
0
reference_url http://git.gnome.org/browse/gimp/commit/?id=2873262fccba12af144ed96ed91be144d92ff2e1
reference_id
reference_type
scores
url http://git.gnome.org/browse/gimp/commit/?id=2873262fccba12af144ed96ed91be144d92ff2e1
1
reference_url http://lists.opensuse.org/opensuse-updates/2012-12/msg00017.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-updates/2012-12/msg00017.html
2
reference_url http://lists.opensuse.org/opensuse-updates/2013-01/msg00014.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-updates/2013-01/msg00014.html
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5576.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5576.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-5576
reference_id
reference_type
scores
0
value 0.06336
scoring_system epss
scoring_elements 0.91005
published_at 2026-04-18T12:55:00Z
1
value 0.06336
scoring_system epss
scoring_elements 0.90932
published_at 2026-04-01T12:55:00Z
2
value 0.06336
scoring_system epss
scoring_elements 0.90937
published_at 2026-04-02T12:55:00Z
3
value 0.06336
scoring_system epss
scoring_elements 0.90946
published_at 2026-04-04T12:55:00Z
4
value 0.06336
scoring_system epss
scoring_elements 0.90956
published_at 2026-04-07T12:55:00Z
5
value 0.06336
scoring_system epss
scoring_elements 0.90967
published_at 2026-04-08T12:55:00Z
6
value 0.06336
scoring_system epss
scoring_elements 0.90973
published_at 2026-04-09T12:55:00Z
7
value 0.06336
scoring_system epss
scoring_elements 0.90982
published_at 2026-04-13T12:55:00Z
8
value 0.06336
scoring_system epss
scoring_elements 0.91007
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-5576
5
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=687392
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=687392
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5576
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5576
7
reference_url http://secunia.com/advisories/50296
reference_id
reference_type
scores
url http://secunia.com/advisories/50296
8
reference_url http://secunia.com/advisories/51479
reference_id
reference_type
scores
url http://secunia.com/advisories/51479
9
reference_url http://secunia.com/advisories/51528
reference_id
reference_type
scores
url http://secunia.com/advisories/51528
10
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2013:082
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2013:082
11
reference_url http://www.openwall.com/lists/oss-security/2012/11/27/1
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2012/11/27/1
12
reference_url http://www.securityfocus.com/bid/56647
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/56647
13
reference_url http://www.ubuntu.com/usn/USN-1659-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/USN-1659-1
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693977
reference_id 693977
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693977
15
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=879302
reference_id 879302
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=879302
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-5576
reference_id CVE-2012-5576
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2012-5576
18
reference_url https://security.gentoo.org/glsa/201311-05
reference_id GLSA-201311-05
reference_type
scores
url https://security.gentoo.org/glsa/201311-05
19
reference_url https://access.redhat.com/errata/RHSA-2013:1778
reference_id RHSA-2013:1778
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:1778
20
reference_url https://usn.ubuntu.com/1659-1/
reference_id USN-1659-1
reference_type
scores
url https://usn.ubuntu.com/1659-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2012-5576
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nb8e-umcc-yudg
32
url VCID-pkzd-5g7r-cfh8
vulnerability_id VCID-pkzd-5g7r-cfh8
summary 
GIMP is prone to a buffer overflow which may lead to the execution of
    arbitrary code when loading specially crafted XCF files.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-3404.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-3404.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2006-3404
reference_id
reference_type
scores
0
value 0.01905
scoring_system epss
scoring_elements 0.83184
published_at 2026-04-01T12:55:00Z
1
value 0.01905
scoring_system epss
scoring_elements 0.832
published_at 2026-04-02T12:55:00Z
2
value 0.01905
scoring_system epss
scoring_elements 0.83215
published_at 2026-04-04T12:55:00Z
3
value 0.01905
scoring_system epss
scoring_elements 0.83213
published_at 2026-04-07T12:55:00Z
4
value 0.01905
scoring_system epss
scoring_elements 0.83238
published_at 2026-04-08T12:55:00Z
5
value 0.01905
scoring_system epss
scoring_elements 0.83245
published_at 2026-04-09T12:55:00Z
6
value 0.01905
scoring_system epss
scoring_elements 0.8326
published_at 2026-04-11T12:55:00Z
7
value 0.01905
scoring_system epss
scoring_elements 0.83254
published_at 2026-04-12T12:55:00Z
8
value 0.01905
scoring_system epss
scoring_elements 0.8325
published_at 2026-04-13T12:55:00Z
9
value 0.01905
scoring_system epss
scoring_elements 0.83286
published_at 2026-04-16T12:55:00Z
10
value 0.01905
scoring_system epss
scoring_elements 0.83288
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2006-3404
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3404
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3404
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1618141
reference_id 1618141
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1618141
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=377049
reference_id 377049
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=377049
5
reference_url https://security.gentoo.org/glsa/200607-08
reference_id GLSA-200607-08
reference_type
scores
url https://security.gentoo.org/glsa/200607-08
6
reference_url https://access.redhat.com/errata/RHSA-2006:0598
reference_id RHSA-2006:0598
reference_type
scores
url https://access.redhat.com/errata/RHSA-2006:0598
7
reference_url https://usn.ubuntu.com/312-1/
reference_id USN-312-1
reference_type
scores
url https://usn.ubuntu.com/312-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.2.13-1
purl pkg:deb/debian/gimp@2.2.13-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1da3-1t47-4ygh
1
vulnerability VCID-1w47-u2aa-8uaj
2
vulnerability VCID-23ev-8ph6-qyd8
3
vulnerability VCID-2k57-pmhe-9uds
4
vulnerability VCID-2p8s-2h2y-aqg4
5
vulnerability VCID-2yr2-zppt-47eq
6
vulnerability VCID-35p4-a8t3-f3g1
7
vulnerability VCID-4wae-t183-yydb
8
vulnerability VCID-5ds4-62sx-xud3
9
vulnerability VCID-5yx1-7s7z-m3ar
10
vulnerability VCID-6uzq-6ejf-kudc
11
vulnerability VCID-6yt4-22x4-2kdk
12
vulnerability VCID-81y4-4cxp-bybu
13
vulnerability VCID-8fnp-pegd-vkf3
14
vulnerability VCID-99yx-7yr3-dfht
15
vulnerability VCID-bcwp-42cm-g3et
16
vulnerability VCID-bf8d-qkyh-auds
17
vulnerability VCID-bhsc-qy1f-27dj
18
vulnerability VCID-bq1c-u55x-5beh
19
vulnerability VCID-cdfh-uhac-sbam
20
vulnerability VCID-dav9-9ar6-gkbn
21
vulnerability VCID-dtpr-ndvm-5udg
22
vulnerability VCID-enq7-y48z-gybf
23
vulnerability VCID-eybg-sjmd-q7a2
24
vulnerability VCID-fta8-9na3-u3hb
25
vulnerability VCID-g7zy-qgvc-cueg
26
vulnerability VCID-gdxp-wy9y-m3h1
27
vulnerability VCID-hkc8-4uw7-2yc3
28
vulnerability VCID-hrab-t25s-5ybg
29
vulnerability VCID-jy45-8uuz-y7bf
30
vulnerability VCID-krn9-65fh-sqgq
31
vulnerability VCID-nb8e-umcc-yudg
32
vulnerability VCID-q23d-29ut-uyhd
33
vulnerability VCID-qsyr-7tn1-uyhv
34
vulnerability VCID-r1ds-par2-5kb4
35
vulnerability VCID-rgcb-3vf1-23dk
36
vulnerability VCID-rraw-1e9t-x3f3
37
vulnerability VCID-s17j-j45c-nqgs
38
vulnerability VCID-sn31-adaw-8kbz
39
vulnerability VCID-svvz-6tap-wqbe
40
vulnerability VCID-teck-svws-tyae
41
vulnerability VCID-tq1x-gwac-6uc9
42
vulnerability VCID-tth9-nncy-5qap
43
vulnerability VCID-u8j3-25up-5bcb
44
vulnerability VCID-ubet-venh-tqct
45
vulnerability VCID-uujf-3fhp-8fgg
46
vulnerability VCID-vjn6-7mrr-j7cn
47
vulnerability VCID-wbtb-bfgn-4bhq
48
vulnerability VCID-wj9c-s6kt-tqag
49
vulnerability VCID-y7a9-2p1n-z7fx
50
vulnerability VCID-ye1p-fndf-h7b9
51
vulnerability VCID-ygcy-xz6u-1qav
52
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.2.13-1
aliases CVE-2006-3404
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pkzd-5g7r-cfh8
33
url VCID-q23d-29ut-uyhd
vulnerability_id VCID-q23d-29ut-uyhd
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17787.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17787.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17787
reference_id
reference_type
scores
0
value 0.00341
scoring_system epss
scoring_elements 0.56694
published_at 2026-04-01T12:55:00Z
1
value 0.00341
scoring_system epss
scoring_elements 0.56833
published_at 2026-04-18T12:55:00Z
2
value 0.00341
scoring_system epss
scoring_elements 0.56848
published_at 2026-04-11T12:55:00Z
3
value 0.00341
scoring_system epss
scoring_elements 0.56826
published_at 2026-04-12T12:55:00Z
4
value 0.00341
scoring_system epss
scoring_elements 0.56804
published_at 2026-04-13T12:55:00Z
5
value 0.00341
scoring_system epss
scoring_elements 0.56835
published_at 2026-04-16T12:55:00Z
6
value 0.00341
scoring_system epss
scoring_elements 0.56788
published_at 2026-04-02T12:55:00Z
7
value 0.00341
scoring_system epss
scoring_elements 0.56809
published_at 2026-04-04T12:55:00Z
8
value 0.00341
scoring_system epss
scoring_elements 0.56784
published_at 2026-04-07T12:55:00Z
9
value 0.00341
scoring_system epss
scoring_elements 0.56836
published_at 2026-04-08T12:55:00Z
10
value 0.00341
scoring_system epss
scoring_elements 0.56841
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17787
2
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=790853
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=790853
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:N/A:P
1
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
11
reference_url https://www.debian.org/security/2017/dsa-4077
reference_id
reference_type
scores
url https://www.debian.org/security/2017/dsa-4077
12
reference_url http://www.openwall.com/lists/oss-security/2017/12/19/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/12/19/5
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1529143
reference_id 1529143
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1529143
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884927
reference_id 884927
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884927
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17787
reference_id CVE-2017-17787
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-17787
21
reference_url https://usn.ubuntu.com/3539-1/
reference_id USN-3539-1
reference_type
scores
url https://usn.ubuntu.com/3539-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
purl pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1%252Bdeb8u2
1
url pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
purl pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-4wae-t183-yydb
5
vulnerability VCID-81y4-4cxp-bybu
6
vulnerability VCID-99yx-7yr3-dfht
7
vulnerability VCID-bcwp-42cm-g3et
8
vulnerability VCID-bf8d-qkyh-auds
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-dav9-9ar6-gkbn
11
vulnerability VCID-dtpr-ndvm-5udg
12
vulnerability VCID-eybg-sjmd-q7a2
13
vulnerability VCID-g7zy-qgvc-cueg
14
vulnerability VCID-gdxp-wy9y-m3h1
15
vulnerability VCID-hkc8-4uw7-2yc3
16
vulnerability VCID-hrab-t25s-5ybg
17
vulnerability VCID-jy45-8uuz-y7bf
18
vulnerability VCID-krn9-65fh-sqgq
19
vulnerability VCID-q23d-29ut-uyhd
20
vulnerability VCID-qsyr-7tn1-uyhv
21
vulnerability VCID-r1ds-par2-5kb4
22
vulnerability VCID-rraw-1e9t-x3f3
23
vulnerability VCID-s17j-j45c-nqgs
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-wj9c-s6kt-tqag
28
vulnerability VCID-ygcy-xz6u-1qav
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.18-1%252Bdeb9u1
2
url pkg:deb/debian/gimp@2.10.8-2
purl pkg:deb/debian/gimp@2.10.8-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-81y4-4cxp-bybu
5
vulnerability VCID-99yx-7yr3-dfht
6
vulnerability VCID-bcwp-42cm-g3et
7
vulnerability VCID-bhsc-qy1f-27dj
8
vulnerability VCID-dav9-9ar6-gkbn
9
vulnerability VCID-dtpr-ndvm-5udg
10
vulnerability VCID-eybg-sjmd-q7a2
11
vulnerability VCID-gdxp-wy9y-m3h1
12
vulnerability VCID-hrab-t25s-5ybg
13
vulnerability VCID-jy45-8uuz-y7bf
14
vulnerability VCID-krn9-65fh-sqgq
15
vulnerability VCID-qsyr-7tn1-uyhv
16
vulnerability VCID-rraw-1e9t-x3f3
17
vulnerability VCID-s17j-j45c-nqgs
18
vulnerability VCID-tth9-nncy-5qap
19
vulnerability VCID-ubet-venh-tqct
20
vulnerability VCID-uujf-3fhp-8fgg
21
vulnerability VCID-ygcy-xz6u-1qav
22
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.8-2
aliases CVE-2017-17787
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q23d-29ut-uyhd
34
url VCID-qsyr-7tn1-uyhv
vulnerability_id VCID-qsyr-7tn1-uyhv
summary gimp: GIMP: Application crash (DoS) via crafted PSD file due to heap-buffer-overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2239.json
reference_id
reference_type
scores
0
value 2.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2239.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2239
reference_id
reference_type
scores
0
value 0.00012
scoring_system epss
scoring_elements 0.01681
published_at 2026-04-02T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.06008
published_at 2026-04-18T12:55:00Z
2
value 0.00022
scoring_system epss
scoring_elements 0.06062
published_at 2026-04-09T12:55:00Z
3
value 0.00022
scoring_system epss
scoring_elements 0.06052
published_at 2026-04-11T12:55:00Z
4
value 0.00022
scoring_system epss
scoring_elements 0.06043
published_at 2026-04-12T12:55:00Z
5
value 0.00022
scoring_system epss
scoring_elements 0.06035
published_at 2026-04-13T12:55:00Z
6
value 0.00022
scoring_system epss
scoring_elements 0.06
published_at 2026-04-16T12:55:00Z
7
value 0.00022
scoring_system epss
scoring_elements 0.05999
published_at 2026-04-04T12:55:00Z
8
value 0.00022
scoring_system epss
scoring_elements 0.05985
published_at 2026-04-07T12:55:00Z
9
value 0.00022
scoring_system epss
scoring_elements 0.06024
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2239
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2239
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2239
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127838
reference_id 1127838
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127838
5
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/15812
reference_id 15812
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T11:29:11Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/15812
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2437675
reference_id 2437675
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T11:29:11Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2437675
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
10
reference_url https://access.redhat.com/security/cve/CVE-2026-2239
reference_id CVE-2026-2239
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T11:29:11Z/
url https://access.redhat.com/security/cve/CVE-2026-2239
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2026-2239
risk_score 1.2
exploitability 0.5
weighted_severity 2.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qsyr-7tn1-uyhv
35
url VCID-r1ds-par2-5kb4
vulnerability_id VCID-r1ds-par2-5kb4
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17786.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17786.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17786
reference_id
reference_type
scores
0
value 0.00326
scoring_system epss
scoring_elements 0.55463
published_at 2026-04-01T12:55:00Z
1
value 0.00326
scoring_system epss
scoring_elements 0.55645
published_at 2026-04-18T12:55:00Z
2
value 0.00326
scoring_system epss
scoring_elements 0.55632
published_at 2026-04-09T12:55:00Z
3
value 0.00326
scoring_system epss
scoring_elements 0.55641
published_at 2026-04-16T12:55:00Z
4
value 0.00326
scoring_system epss
scoring_elements 0.5562
published_at 2026-04-12T12:55:00Z
5
value 0.00326
scoring_system epss
scoring_elements 0.55603
published_at 2026-04-13T12:55:00Z
6
value 0.00326
scoring_system epss
scoring_elements 0.55575
published_at 2026-04-02T12:55:00Z
7
value 0.00326
scoring_system epss
scoring_elements 0.55599
published_at 2026-04-04T12:55:00Z
8
value 0.00326
scoring_system epss
scoring_elements 0.55577
published_at 2026-04-07T12:55:00Z
9
value 0.00326
scoring_system epss
scoring_elements 0.55629
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17786
2
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=739134
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=739134
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.1
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:N/I:N/A:P
1
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
11
reference_url https://www.debian.org/security/2017/dsa-4077
reference_id
reference_type
scores
url https://www.debian.org/security/2017/dsa-4077
12
reference_url http://www.openwall.com/lists/oss-security/2017/12/19/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/12/19/5
13
reference_url http://www.securityfocus.com/bid/102765
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/102765
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1529145
reference_id 1529145
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1529145
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884862
reference_id 884862
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884862
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17786
reference_id CVE-2017-17786
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-17786
22
reference_url https://usn.ubuntu.com/3539-1/
reference_id USN-3539-1
reference_type
scores
url https://usn.ubuntu.com/3539-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
purl pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1%252Bdeb8u2
1
url pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
purl pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-4wae-t183-yydb
5
vulnerability VCID-81y4-4cxp-bybu
6
vulnerability VCID-99yx-7yr3-dfht
7
vulnerability VCID-bcwp-42cm-g3et
8
vulnerability VCID-bf8d-qkyh-auds
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-dav9-9ar6-gkbn
11
vulnerability VCID-dtpr-ndvm-5udg
12
vulnerability VCID-eybg-sjmd-q7a2
13
vulnerability VCID-g7zy-qgvc-cueg
14
vulnerability VCID-gdxp-wy9y-m3h1
15
vulnerability VCID-hkc8-4uw7-2yc3
16
vulnerability VCID-hrab-t25s-5ybg
17
vulnerability VCID-jy45-8uuz-y7bf
18
vulnerability VCID-krn9-65fh-sqgq
19
vulnerability VCID-q23d-29ut-uyhd
20
vulnerability VCID-qsyr-7tn1-uyhv
21
vulnerability VCID-r1ds-par2-5kb4
22
vulnerability VCID-rraw-1e9t-x3f3
23
vulnerability VCID-s17j-j45c-nqgs
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-wj9c-s6kt-tqag
28
vulnerability VCID-ygcy-xz6u-1qav
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.18-1%252Bdeb9u1
2
url pkg:deb/debian/gimp@2.10.8-2
purl pkg:deb/debian/gimp@2.10.8-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-81y4-4cxp-bybu
5
vulnerability VCID-99yx-7yr3-dfht
6
vulnerability VCID-bcwp-42cm-g3et
7
vulnerability VCID-bhsc-qy1f-27dj
8
vulnerability VCID-dav9-9ar6-gkbn
9
vulnerability VCID-dtpr-ndvm-5udg
10
vulnerability VCID-eybg-sjmd-q7a2
11
vulnerability VCID-gdxp-wy9y-m3h1
12
vulnerability VCID-hrab-t25s-5ybg
13
vulnerability VCID-jy45-8uuz-y7bf
14
vulnerability VCID-krn9-65fh-sqgq
15
vulnerability VCID-qsyr-7tn1-uyhv
16
vulnerability VCID-rraw-1e9t-x3f3
17
vulnerability VCID-s17j-j45c-nqgs
18
vulnerability VCID-tth9-nncy-5qap
19
vulnerability VCID-ubet-venh-tqct
20
vulnerability VCID-uujf-3fhp-8fgg
21
vulnerability VCID-ygcy-xz6u-1qav
22
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.8-2
aliases CVE-2017-17786
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r1ds-par2-5kb4
36
url VCID-rgcb-3vf1-23dk
vulnerability_id VCID-rgcb-3vf1-23dk
summary several
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1978.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1978.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1978
reference_id
reference_type
scores
0
value 0.03438
scoring_system epss
scoring_elements 0.87429
published_at 2026-04-01T12:55:00Z
1
value 0.03438
scoring_system epss
scoring_elements 0.87438
published_at 2026-04-02T12:55:00Z
2
value 0.03438
scoring_system epss
scoring_elements 0.87452
published_at 2026-04-04T12:55:00Z
3
value 0.03438
scoring_system epss
scoring_elements 0.87454
published_at 2026-04-07T12:55:00Z
4
value 0.03438
scoring_system epss
scoring_elements 0.87473
published_at 2026-04-08T12:55:00Z
5
value 0.03438
scoring_system epss
scoring_elements 0.8748
published_at 2026-04-09T12:55:00Z
6
value 0.03438
scoring_system epss
scoring_elements 0.87491
published_at 2026-04-11T12:55:00Z
7
value 0.03438
scoring_system epss
scoring_elements 0.87487
published_at 2026-04-12T12:55:00Z
8
value 0.03438
scoring_system epss
scoring_elements 0.87483
published_at 2026-04-13T12:55:00Z
9
value 0.03438
scoring_system epss
scoring_elements 0.87498
published_at 2026-04-16T12:55:00Z
10
value 0.03438
scoring_system epss
scoring_elements 0.875
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1978
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1913
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1913
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1978
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1978
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731305
reference_id 731305
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731305
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=953902
reference_id 953902
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=953902
6
reference_url https://security.gentoo.org/glsa/201603-01
reference_id GLSA-201603-01
reference_type
scores
url https://security.gentoo.org/glsa/201603-01
7
reference_url https://access.redhat.com/errata/RHSA-2013:1778
reference_id RHSA-2013:1778
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:1778
8
reference_url https://usn.ubuntu.com/2051-1/
reference_id USN-2051-1
reference_type
scores
url https://usn.ubuntu.com/2051-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
1
url pkg:deb/debian/gimp@2.8.14-1
purl pkg:deb/debian/gimp@2.8.14-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1
aliases CVE-2013-1978
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rgcb-3vf1-23dk
37
url VCID-rraw-1e9t-x3f3
vulnerability_id VCID-rraw-1e9t-x3f3
summary gimp: GIMP: Remote Code Execution via XWD file parsing vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2048.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2048.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2048
reference_id
reference_type
scores
0
value 0.00047
scoring_system epss
scoring_elements 0.14621
published_at 2026-04-02T12:55:00Z
1
value 0.00047
scoring_system epss
scoring_elements 0.14402
published_at 2026-04-18T12:55:00Z
2
value 0.00047
scoring_system epss
scoring_elements 0.14649
published_at 2026-04-09T12:55:00Z
3
value 0.00047
scoring_system epss
scoring_elements 0.14608
published_at 2026-04-11T12:55:00Z
4
value 0.00047
scoring_system epss
scoring_elements 0.14569
published_at 2026-04-12T12:55:00Z
5
value 0.00047
scoring_system epss
scoring_elements 0.14509
published_at 2026-04-13T12:55:00Z
6
value 0.00047
scoring_system epss
scoring_elements 0.14401
published_at 2026-04-16T12:55:00Z
7
value 0.00047
scoring_system epss
scoring_elements 0.14691
published_at 2026-04-04T12:55:00Z
8
value 0.00047
scoring_system epss
scoring_elements 0.14502
published_at 2026-04-07T12:55:00Z
9
value 0.00047
scoring_system epss
scoring_elements 0.14591
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2048
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2048
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2048
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1128606
reference_id 1128606
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1128606
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2441527
reference_id 2441527
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2441527
6
reference_url https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2586/diffs?commit_id=57712677007793118388c5be6fb8231f22a2b341
reference_id diffs?commit_id=57712677007793118388c5be6fb8231f22a2b341
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-21T04:56:37Z/
url https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2586/diffs?commit_id=57712677007793118388c5be6fb8231f22a2b341
7
reference_url https://access.redhat.com/errata/RHSA-2026:4173
reference_id RHSA-2026:4173
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4173
8
reference_url https://access.redhat.com/errata/RHSA-2026:5113
reference_id RHSA-2026:5113
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5113
9
reference_url https://access.redhat.com/errata/RHSA-2026:5388
reference_id RHSA-2026:5388
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5388
10
reference_url https://access.redhat.com/errata/RHSA-2026:5389
reference_id RHSA-2026:5389
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5389
11
reference_url https://access.redhat.com/errata/RHSA-2026:5390
reference_id RHSA-2026:5390
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5390
12
reference_url https://access.redhat.com/errata/RHSA-2026:5391
reference_id RHSA-2026:5391
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5391
13
reference_url https://access.redhat.com/errata/RHSA-2026:5434
reference_id RHSA-2026:5434
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5434
14
reference_url https://access.redhat.com/errata/RHSA-2026:5435
reference_id RHSA-2026:5435
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5435
15
reference_url https://access.redhat.com/errata/RHSA-2026:5436
reference_id RHSA-2026:5436
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5436
16
reference_url https://access.redhat.com/errata/RHSA-2026:5437
reference_id RHSA-2026:5437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5437
17
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-121/
reference_id ZDI-26-121
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-21T04:56:37Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-121/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2026-2048
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rraw-1e9t-x3f3
38
url VCID-s17j-j45c-nqgs
vulnerability_id VCID-s17j-j45c-nqgs
summary Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44441.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44441.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-44441
reference_id
reference_type
scores
0
value 0.11742
scoring_system epss
scoring_elements 0.93669
published_at 2026-04-02T12:55:00Z
1
value 0.11742
scoring_system epss
scoring_elements 0.9372
published_at 2026-04-18T12:55:00Z
2
value 0.11742
scoring_system epss
scoring_elements 0.93689
published_at 2026-04-08T12:55:00Z
3
value 0.11742
scoring_system epss
scoring_elements 0.93692
published_at 2026-04-09T12:55:00Z
4
value 0.11742
scoring_system epss
scoring_elements 0.93696
published_at 2026-04-12T12:55:00Z
5
value 0.11742
scoring_system epss
scoring_elements 0.93697
published_at 2026-04-13T12:55:00Z
6
value 0.11742
scoring_system epss
scoring_elements 0.93713
published_at 2026-04-16T12:55:00Z
7
value 0.11742
scoring_system epss
scoring_elements 0.93679
published_at 2026-04-04T12:55:00Z
8
value 0.11742
scoring_system epss
scoring_elements 0.9368
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-44441
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
6
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
reference_id 1055984
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2249938
reference_id 2249938
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2249938
9
reference_url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
reference_id gimp-2-10-36-released
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-05T15:16:52Z/
url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
10
reference_url https://security.gentoo.org/glsa/202501-02
reference_id GLSA-202501-02
reference_type
scores
url https://security.gentoo.org/glsa/202501-02
11
reference_url https://access.redhat.com/errata/RHSA-2024:0675
reference_id RHSA-2024:0675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0675
12
reference_url https://access.redhat.com/errata/RHSA-2024:0702
reference_id RHSA-2024:0702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0702
13
reference_url https://access.redhat.com/errata/RHSA-2024:0716
reference_id RHSA-2024:0716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0716
14
reference_url https://access.redhat.com/errata/RHSA-2025:3617
reference_id RHSA-2025:3617
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3617
15
reference_url https://access.redhat.com/errata/RHSA-2025:3629
reference_id RHSA-2025:3629
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3629
16
reference_url https://access.redhat.com/errata/RHSA-2025:7417
reference_id RHSA-2025:7417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:7417
17
reference_url https://usn.ubuntu.com/6521-1/
reference_id USN-6521-1
reference_type
scores
url https://usn.ubuntu.com/6521-1/
18
reference_url https://usn.ubuntu.com/7209-1/
reference_id USN-7209-1
reference_type
scores
url https://usn.ubuntu.com/7209-1/
19
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1592/
reference_id ZDI-23-1592
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-05T15:16:52Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1592/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-1w47-u2aa-8uaj
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-3sqk-cbwn-tqa7
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-9v2z-2myu-bfd3
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-d967-53mv-13b6
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dkmg-nu4f-xbay
13
vulnerability VCID-dtpr-ndvm-5udg
14
vulnerability VCID-fraw-9hj8-vbhs
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-gfzg-1hvp-5ugd
17
vulnerability VCID-hj85-sup9-abft
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-ney7-z8qy-kuce
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-va44-vsem-xuf5
28
vulnerability VCID-wkrp-v537-x3hy
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2
aliases CVE-2023-44441, ZDI-CAN-22093
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s17j-j45c-nqgs
39
url VCID-sn31-adaw-8kbz
vulnerability_id VCID-sn31-adaw-8kbz
summary Gimp: Incomplete fix for CVE-2010-4543 PSP plug-in heap overflow issue
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1782.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1782.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-1782
reference_id
reference_type
scores
0
value 0.01531
scoring_system epss
scoring_elements 0.81251
published_at 2026-04-01T12:55:00Z
1
value 0.01531
scoring_system epss
scoring_elements 0.8126
published_at 2026-04-02T12:55:00Z
2
value 0.01531
scoring_system epss
scoring_elements 0.81282
published_at 2026-04-04T12:55:00Z
3
value 0.01531
scoring_system epss
scoring_elements 0.81281
published_at 2026-04-07T12:55:00Z
4
value 0.01531
scoring_system epss
scoring_elements 0.8131
published_at 2026-04-08T12:55:00Z
5
value 0.01531
scoring_system epss
scoring_elements 0.81315
published_at 2026-04-09T12:55:00Z
6
value 0.01531
scoring_system epss
scoring_elements 0.81335
published_at 2026-04-11T12:55:00Z
7
value 0.01531
scoring_system epss
scoring_elements 0.81322
published_at 2026-04-12T12:55:00Z
8
value 0.01531
scoring_system epss
scoring_elements 0.81314
published_at 2026-04-13T12:55:00Z
9
value 0.01531
scoring_system epss
scoring_elements 0.81351
published_at 2026-04-16T12:55:00Z
10
value 0.01531
scoring_system epss
scoring_elements 0.81353
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-1782
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1782
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1782
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629830
reference_id 629830
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629830
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=704512
reference_id 704512
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=704512
5
reference_url https://usn.ubuntu.com/1147-1/
reference_id USN-1147-1
reference_type
scores
url https://usn.ubuntu.com/1147-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2011-1782
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sn31-adaw-8kbz
40
url VCID-svvz-6tap-wqbe
vulnerability_id VCID-svvz-6tap-wqbe
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id
reference_type
scores
url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
2
reference_url http://openwall.com/lists/oss-security/2011/01/03/2
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/03/2
3
reference_url http://openwall.com/lists/oss-security/2011/01/04/7
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2011/01/04/7
4
reference_url http://osvdb.org/70284
reference_id
reference_type
scores
url http://osvdb.org/70284
5
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4543.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4543.json
6
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-4543
reference_id
reference_type
scores
0
value 0.22756
scoring_system epss
scoring_elements 0.95886
published_at 2026-04-18T12:55:00Z
1
value 0.22756
scoring_system epss
scoring_elements 0.95833
published_at 2026-04-01T12:55:00Z
2
value 0.22756
scoring_system epss
scoring_elements 0.95841
published_at 2026-04-02T12:55:00Z
3
value 0.22756
scoring_system epss
scoring_elements 0.95849
published_at 2026-04-04T12:55:00Z
4
value 0.22756
scoring_system epss
scoring_elements 0.95852
published_at 2026-04-07T12:55:00Z
5
value 0.22756
scoring_system epss
scoring_elements 0.95861
published_at 2026-04-08T12:55:00Z
6
value 0.22756
scoring_system epss
scoring_elements 0.95864
published_at 2026-04-09T12:55:00Z
7
value 0.22756
scoring_system epss
scoring_elements 0.95868
published_at 2026-04-11T12:55:00Z
8
value 0.22756
scoring_system epss
scoring_elements 0.95867
published_at 2026-04-12T12:55:00Z
9
value 0.22756
scoring_system epss
scoring_elements 0.95869
published_at 2026-04-13T12:55:00Z
10
value 0.22756
scoring_system epss
scoring_elements 0.95881
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-4543
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4543
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4543
8
reference_url http://secunia.com/advisories/42771
reference_id
reference_type
scores
url http://secunia.com/advisories/42771
9
reference_url http://secunia.com/advisories/44750
reference_id
reference_type
scores
url http://secunia.com/advisories/44750
10
reference_url http://secunia.com/advisories/48236
reference_id
reference_type
scores
url http://secunia.com/advisories/48236
11
reference_url http://secunia.com/advisories/50737
reference_id
reference_type
scores
url http://secunia.com/advisories/50737
12
reference_url http://security.gentoo.org/glsa/glsa-201209-23.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-201209-23.xml
13
reference_url http://www.debian.org/security/2012/dsa-2426
reference_id
reference_type
scores
url http://www.debian.org/security/2012/dsa-2426
14
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
15
reference_url http://www.redhat.com/support/errata/RHSA-2011-0837.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0837.html
16
reference_url http://www.redhat.com/support/errata/RHSA-2011-0838.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0838.html
17
reference_url http://www.redhat.com/support/errata/RHSA-2011-0839.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0839.html
18
reference_url http://www.vupen.com/english/advisories/2011/0016
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2011/0016
19
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
reference_id 608497
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
20
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=703407
reference_id 703407
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=703407
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.6.11:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/detail/CVE-2010-4543
reference_id CVE-2010-4543
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2010-4543
23
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/35162.cob
reference_id CVE-2010-4543;OSVDB-70284
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/35162.cob
24
reference_url https://www.securityfocus.com/bid/45647/info
reference_id CVE-2010-4543;OSVDB-70284
reference_type exploit
scores
url https://www.securityfocus.com/bid/45647/info
25
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
26
reference_url https://access.redhat.com/errata/RHSA-2011:0837
reference_id RHSA-2011:0837
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0837
27
reference_url https://access.redhat.com/errata/RHSA-2011:0838
reference_id RHSA-2011:0838
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0838
28
reference_url https://access.redhat.com/errata/RHSA-2011:0839
reference_id RHSA-2011:0839
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0839
29
reference_url https://usn.ubuntu.com/1109-1/
reference_id USN-1109-1
reference_type
scores
url https://usn.ubuntu.com/1109-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2010-4543
risk_score 10.0
exploitability 2.0
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-svvz-6tap-wqbe
41
url VCID-teck-svws-tyae
vulnerability_id VCID-teck-svws-tyae
summary Gimp image loader multiple input validation flaws
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3741.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3741.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-3741
reference_id
reference_type
scores
0
value 0.01744
scoring_system epss
scoring_elements 0.82455
published_at 2026-04-01T12:55:00Z
1
value 0.01744
scoring_system epss
scoring_elements 0.82469
published_at 2026-04-02T12:55:00Z
2
value 0.01744
scoring_system epss
scoring_elements 0.82486
published_at 2026-04-04T12:55:00Z
3
value 0.01744
scoring_system epss
scoring_elements 0.82483
published_at 2026-04-07T12:55:00Z
4
value 0.01744
scoring_system epss
scoring_elements 0.8251
published_at 2026-04-08T12:55:00Z
5
value 0.01744
scoring_system epss
scoring_elements 0.82517
published_at 2026-04-09T12:55:00Z
6
value 0.01744
scoring_system epss
scoring_elements 0.82536
published_at 2026-04-11T12:55:00Z
7
value 0.01744
scoring_system epss
scoring_elements 0.82532
published_at 2026-04-12T12:55:00Z
8
value 0.01744
scoring_system epss
scoring_elements 0.82527
published_at 2026-04-13T12:55:00Z
9
value 0.01815
scoring_system epss
scoring_elements 0.82884
published_at 2026-04-16T12:55:00Z
10
value 0.01815
scoring_system epss
scoring_elements 0.82883
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-3741
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3741
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3741
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=248053
reference_id 248053
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=248053
4
reference_url https://access.redhat.com/errata/RHSA-2007:0513
reference_id RHSA-2007:0513
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0513
fixed_packages
0
url pkg:deb/debian/gimp@2.4.7-1
purl pkg:deb/debian/gimp@2.4.7-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5ds4-62sx-xud3
8
vulnerability VCID-5yx1-7s7z-m3ar
9
vulnerability VCID-6uzq-6ejf-kudc
10
vulnerability VCID-6yt4-22x4-2kdk
11
vulnerability VCID-81y4-4cxp-bybu
12
vulnerability VCID-99yx-7yr3-dfht
13
vulnerability VCID-bcwp-42cm-g3et
14
vulnerability VCID-bf8d-qkyh-auds
15
vulnerability VCID-bhsc-qy1f-27dj
16
vulnerability VCID-bq1c-u55x-5beh
17
vulnerability VCID-cdfh-uhac-sbam
18
vulnerability VCID-dav9-9ar6-gkbn
19
vulnerability VCID-dtpr-ndvm-5udg
20
vulnerability VCID-eybg-sjmd-q7a2
21
vulnerability VCID-fta8-9na3-u3hb
22
vulnerability VCID-g7zy-qgvc-cueg
23
vulnerability VCID-gdxp-wy9y-m3h1
24
vulnerability VCID-hkc8-4uw7-2yc3
25
vulnerability VCID-hrab-t25s-5ybg
26
vulnerability VCID-jy45-8uuz-y7bf
27
vulnerability VCID-krn9-65fh-sqgq
28
vulnerability VCID-nb8e-umcc-yudg
29
vulnerability VCID-q23d-29ut-uyhd
30
vulnerability VCID-qsyr-7tn1-uyhv
31
vulnerability VCID-r1ds-par2-5kb4
32
vulnerability VCID-rgcb-3vf1-23dk
33
vulnerability VCID-rraw-1e9t-x3f3
34
vulnerability VCID-s17j-j45c-nqgs
35
vulnerability VCID-sn31-adaw-8kbz
36
vulnerability VCID-svvz-6tap-wqbe
37
vulnerability VCID-tq1x-gwac-6uc9
38
vulnerability VCID-tth9-nncy-5qap
39
vulnerability VCID-u8j3-25up-5bcb
40
vulnerability VCID-ubet-venh-tqct
41
vulnerability VCID-uujf-3fhp-8fgg
42
vulnerability VCID-wbtb-bfgn-4bhq
43
vulnerability VCID-wj9c-s6kt-tqag
44
vulnerability VCID-y7a9-2p1n-z7fx
45
vulnerability VCID-ye1p-fndf-h7b9
46
vulnerability VCID-ygcy-xz6u-1qav
47
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.4.7-1
aliases CVE-2007-3741
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-teck-svws-tyae
42
url VCID-tq1x-gwac-6uc9
vulnerability_id VCID-tq1x-gwac-6uc9
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3909.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3909.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-3909
reference_id
reference_type
scores
0
value 0.06708
scoring_system epss
scoring_elements 0.91254
published_at 2026-04-12T12:55:00Z
1
value 0.06708
scoring_system epss
scoring_elements 0.91253
published_at 2026-04-13T12:55:00Z
2
value 0.06708
scoring_system epss
scoring_elements 0.91277
published_at 2026-04-18T12:55:00Z
3
value 0.11539
scoring_system epss
scoring_elements 0.93609
published_at 2026-04-07T12:55:00Z
4
value 0.11539
scoring_system epss
scoring_elements 0.93618
published_at 2026-04-08T12:55:00Z
5
value 0.11539
scoring_system epss
scoring_elements 0.9359
published_at 2026-04-01T12:55:00Z
6
value 0.11539
scoring_system epss
scoring_elements 0.93625
published_at 2026-04-11T12:55:00Z
7
value 0.11539
scoring_system epss
scoring_elements 0.93621
published_at 2026-04-09T12:55:00Z
8
value 0.11539
scoring_system epss
scoring_elements 0.93599
published_at 2026-04-02T12:55:00Z
9
value 0.11539
scoring_system epss
scoring_elements 0.93607
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-3909
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3909
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3909
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=537370
reference_id 537370
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=537370
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=556750
reference_id 556750
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=556750
5
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
6
reference_url https://access.redhat.com/errata/RHSA-2012:1181
reference_id RHSA-2012:1181
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1181
7
reference_url https://usn.ubuntu.com/880-1/
reference_id USN-880-1
reference_type
scores
url https://usn.ubuntu.com/880-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
purl pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5yx1-7s7z-m3ar
8
vulnerability VCID-6yt4-22x4-2kdk
9
vulnerability VCID-81y4-4cxp-bybu
10
vulnerability VCID-99yx-7yr3-dfht
11
vulnerability VCID-bcwp-42cm-g3et
12
vulnerability VCID-bf8d-qkyh-auds
13
vulnerability VCID-bhsc-qy1f-27dj
14
vulnerability VCID-bq1c-u55x-5beh
15
vulnerability VCID-cdfh-uhac-sbam
16
vulnerability VCID-dav9-9ar6-gkbn
17
vulnerability VCID-dtpr-ndvm-5udg
18
vulnerability VCID-eybg-sjmd-q7a2
19
vulnerability VCID-fta8-9na3-u3hb
20
vulnerability VCID-g7zy-qgvc-cueg
21
vulnerability VCID-gdxp-wy9y-m3h1
22
vulnerability VCID-hkc8-4uw7-2yc3
23
vulnerability VCID-hrab-t25s-5ybg
24
vulnerability VCID-jy45-8uuz-y7bf
25
vulnerability VCID-krn9-65fh-sqgq
26
vulnerability VCID-nb8e-umcc-yudg
27
vulnerability VCID-q23d-29ut-uyhd
28
vulnerability VCID-qsyr-7tn1-uyhv
29
vulnerability VCID-r1ds-par2-5kb4
30
vulnerability VCID-rgcb-3vf1-23dk
31
vulnerability VCID-rraw-1e9t-x3f3
32
vulnerability VCID-s17j-j45c-nqgs
33
vulnerability VCID-sn31-adaw-8kbz
34
vulnerability VCID-svvz-6tap-wqbe
35
vulnerability VCID-tth9-nncy-5qap
36
vulnerability VCID-ubet-venh-tqct
37
vulnerability VCID-uujf-3fhp-8fgg
38
vulnerability VCID-wbtb-bfgn-4bhq
39
vulnerability VCID-wj9c-s6kt-tqag
40
vulnerability VCID-y7a9-2p1n-z7fx
41
vulnerability VCID-ye1p-fndf-h7b9
42
vulnerability VCID-ygcy-xz6u-1qav
43
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.6.10-1%252Bsqueeze4
aliases CVE-2009-3909
risk_score 0.1
exploitability 0.5
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tq1x-gwac-6uc9
43
url VCID-tth9-nncy-5qap
vulnerability_id VCID-tth9-nncy-5qap
summary gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14422.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-14422.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-14422
reference_id
reference_type
scores
0
value 0.00115
scoring_system epss
scoring_elements 0.30228
published_at 2026-04-02T12:55:00Z
1
value 0.00115
scoring_system epss
scoring_elements 0.30097
published_at 2026-04-18T12:55:00Z
2
value 0.00115
scoring_system epss
scoring_elements 0.3019
published_at 2026-04-09T12:55:00Z
3
value 0.00115
scoring_system epss
scoring_elements 0.30193
published_at 2026-04-11T12:55:00Z
4
value 0.00115
scoring_system epss
scoring_elements 0.3015
published_at 2026-04-12T12:55:00Z
5
value 0.00115
scoring_system epss
scoring_elements 0.301
published_at 2026-04-13T12:55:00Z
6
value 0.00115
scoring_system epss
scoring_elements 0.30115
published_at 2026-04-16T12:55:00Z
7
value 0.00115
scoring_system epss
scoring_elements 0.30277
published_at 2026-04-04T12:55:00Z
8
value 0.00115
scoring_system epss
scoring_elements 0.30094
published_at 2026-04-07T12:55:00Z
9
value 0.00115
scoring_system epss
scoring_elements 0.30154
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-14422
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14422
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14422
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2424766
reference_id 2424766
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2424766
5
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/4ff2d773d58064e6130495de498e440f4a6d5edb
reference_id 4ff2d773d58064e6130495de498e440f4a6d5edb
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-01T04:55:23Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/4ff2d773d58064e6130495de498e440f4a6d5edb
6
reference_url https://access.redhat.com/errata/RHSA-2026:0914
reference_id RHSA-2026:0914
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0914
7
reference_url https://access.redhat.com/errata/RHSA-2026:1511
reference_id RHSA-2026:1511
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1511
8
reference_url https://access.redhat.com/errata/RHSA-2026:1574
reference_id RHSA-2026:1574
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1574
9
reference_url https://access.redhat.com/errata/RHSA-2026:1584
reference_id RHSA-2026:1584
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1584
10
reference_url https://access.redhat.com/errata/RHSA-2026:1585
reference_id RHSA-2026:1585
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1585
11
reference_url https://access.redhat.com/errata/RHSA-2026:1586
reference_id RHSA-2026:1586
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1586
12
reference_url https://access.redhat.com/errata/RHSA-2026:1587
reference_id RHSA-2026:1587
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1587
13
reference_url https://access.redhat.com/errata/RHSA-2026:1588
reference_id RHSA-2026:1588
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1588
14
reference_url https://access.redhat.com/errata/RHSA-2026:1589
reference_id RHSA-2026:1589
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1589
15
reference_url https://access.redhat.com/errata/RHSA-2026:1590
reference_id RHSA-2026:1590
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1590
16
reference_url https://access.redhat.com/errata/RHSA-2026:1591
reference_id RHSA-2026:1591
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1591
17
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
18
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-1136/
reference_id ZDI-25-1136
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-01T04:55:23Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-1136/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-14422
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tth9-nncy-5qap
44
url VCID-u8j3-25up-5bcb
vulnerability_id VCID-u8j3-25up-5bcb
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url http://git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce
reference_id
reference_type
scores
url http://git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1178.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1178.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-1178
reference_id
reference_type
scores
0
value 0.02208
scoring_system epss
scoring_elements 0.84474
published_at 2026-04-18T12:55:00Z
1
value 0.02208
scoring_system epss
scoring_elements 0.84379
published_at 2026-04-01T12:55:00Z
2
value 0.02208
scoring_system epss
scoring_elements 0.84393
published_at 2026-04-02T12:55:00Z
3
value 0.02208
scoring_system epss
scoring_elements 0.84414
published_at 2026-04-04T12:55:00Z
4
value 0.02208
scoring_system epss
scoring_elements 0.84416
published_at 2026-04-07T12:55:00Z
5
value 0.02208
scoring_system epss
scoring_elements 0.84438
published_at 2026-04-08T12:55:00Z
6
value 0.02208
scoring_system epss
scoring_elements 0.84443
published_at 2026-04-09T12:55:00Z
7
value 0.02208
scoring_system epss
scoring_elements 0.84461
published_at 2026-04-11T12:55:00Z
8
value 0.02208
scoring_system epss
scoring_elements 0.84455
published_at 2026-04-12T12:55:00Z
9
value 0.02208
scoring_system epss
scoring_elements 0.84451
published_at 2026-04-13T12:55:00Z
10
value 0.02208
scoring_system epss
scoring_elements 0.84473
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-1178
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1178
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1178
4
reference_url http://secunia.com/advisories/50737
reference_id
reference_type
scores
url http://secunia.com/advisories/50737
5
reference_url http://security.gentoo.org/glsa/glsa-201209-23.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-201209-23.xml
6
reference_url http://securitytracker.com/id?1025586
reference_id
reference_type
scores
url http://securitytracker.com/id?1025586
7
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/67787
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/67787
8
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2011:110
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2011:110
9
reference_url http://www.redhat.com/support/errata/RHSA-2011-0837.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0837.html
10
reference_url http://www.redhat.com/support/errata/RHSA-2011-0838.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2011-0838.html
11
reference_url http://www.securityfocus.com/bid/48057
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/48057
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=689831
reference_id 689831
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=689831
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-1178
reference_id CVE-2011-1178
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2011-1178
15
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
16
reference_url https://access.redhat.com/errata/RHSA-2011:0837
reference_id RHSA-2011:0837
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0837
17
reference_url https://access.redhat.com/errata/RHSA-2011:0838
reference_id RHSA-2011:0838
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0838
fixed_packages
0
url pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
purl pkg:deb/debian/gimp@2.6.10-1%2Bsqueeze4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5yx1-7s7z-m3ar
8
vulnerability VCID-6yt4-22x4-2kdk
9
vulnerability VCID-81y4-4cxp-bybu
10
vulnerability VCID-99yx-7yr3-dfht
11
vulnerability VCID-bcwp-42cm-g3et
12
vulnerability VCID-bf8d-qkyh-auds
13
vulnerability VCID-bhsc-qy1f-27dj
14
vulnerability VCID-bq1c-u55x-5beh
15
vulnerability VCID-cdfh-uhac-sbam
16
vulnerability VCID-dav9-9ar6-gkbn
17
vulnerability VCID-dtpr-ndvm-5udg
18
vulnerability VCID-eybg-sjmd-q7a2
19
vulnerability VCID-fta8-9na3-u3hb
20
vulnerability VCID-g7zy-qgvc-cueg
21
vulnerability VCID-gdxp-wy9y-m3h1
22
vulnerability VCID-hkc8-4uw7-2yc3
23
vulnerability VCID-hrab-t25s-5ybg
24
vulnerability VCID-jy45-8uuz-y7bf
25
vulnerability VCID-krn9-65fh-sqgq
26
vulnerability VCID-nb8e-umcc-yudg
27
vulnerability VCID-q23d-29ut-uyhd
28
vulnerability VCID-qsyr-7tn1-uyhv
29
vulnerability VCID-r1ds-par2-5kb4
30
vulnerability VCID-rgcb-3vf1-23dk
31
vulnerability VCID-rraw-1e9t-x3f3
32
vulnerability VCID-s17j-j45c-nqgs
33
vulnerability VCID-sn31-adaw-8kbz
34
vulnerability VCID-svvz-6tap-wqbe
35
vulnerability VCID-tth9-nncy-5qap
36
vulnerability VCID-ubet-venh-tqct
37
vulnerability VCID-uujf-3fhp-8fgg
38
vulnerability VCID-wbtb-bfgn-4bhq
39
vulnerability VCID-wj9c-s6kt-tqag
40
vulnerability VCID-y7a9-2p1n-z7fx
41
vulnerability VCID-ye1p-fndf-h7b9
42
vulnerability VCID-ygcy-xz6u-1qav
43
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.6.10-1%252Bsqueeze4
aliases CVE-2011-1178
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u8j3-25up-5bcb
45
url VCID-ubet-venh-tqct
vulnerability_id VCID-ubet-venh-tqct
summary gimp: GIMP: Remote Code Execution via uninitialized memory in PGM file parsing
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2044.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2044.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2044
reference_id
reference_type
scores
0
value 0.00039
scoring_system epss
scoring_elements 0.11793
published_at 2026-04-02T12:55:00Z
1
value 0.00039
scoring_system epss
scoring_elements 0.11575
published_at 2026-04-18T12:55:00Z
2
value 0.00039
scoring_system epss
scoring_elements 0.11764
published_at 2026-04-09T12:55:00Z
3
value 0.00039
scoring_system epss
scoring_elements 0.11775
published_at 2026-04-11T12:55:00Z
4
value 0.00039
scoring_system epss
scoring_elements 0.11736
published_at 2026-04-12T12:55:00Z
5
value 0.00039
scoring_system epss
scoring_elements 0.11711
published_at 2026-04-13T12:55:00Z
6
value 0.00039
scoring_system epss
scoring_elements 0.11573
published_at 2026-04-16T12:55:00Z
7
value 0.00039
scoring_system epss
scoring_elements 0.11836
published_at 2026-04-04T12:55:00Z
8
value 0.00039
scoring_system epss
scoring_elements 0.11624
published_at 2026-04-07T12:55:00Z
9
value 0.00039
scoring_system epss
scoring_elements 0.11709
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2044
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2044
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2044
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2441521
reference_id 2441521
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2441521
5
reference_url https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2569/diffs?commit_id=112a5e038f0646eae5ae314988ec074433d2b365
reference_id diffs?commit_id=112a5e038f0646eae5ae314988ec074433d2b365
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-21T04:56:42Z/
url https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2569/diffs?commit_id=112a5e038f0646eae5ae314988ec074433d2b365
6
reference_url https://access.redhat.com/errata/RHSA-2026:4173
reference_id RHSA-2026:4173
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4173
7
reference_url https://access.redhat.com/errata/RHSA-2026:5113
reference_id RHSA-2026:5113
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5113
8
reference_url https://access.redhat.com/errata/RHSA-2026:5388
reference_id RHSA-2026:5388
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5388
9
reference_url https://access.redhat.com/errata/RHSA-2026:5389
reference_id RHSA-2026:5389
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5389
10
reference_url https://access.redhat.com/errata/RHSA-2026:5390
reference_id RHSA-2026:5390
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5390
11
reference_url https://access.redhat.com/errata/RHSA-2026:5391
reference_id RHSA-2026:5391
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5391
12
reference_url https://access.redhat.com/errata/RHSA-2026:5434
reference_id RHSA-2026:5434
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5434
13
reference_url https://access.redhat.com/errata/RHSA-2026:5435
reference_id RHSA-2026:5435
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5435
14
reference_url https://access.redhat.com/errata/RHSA-2026:5436
reference_id RHSA-2026:5436
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5436
15
reference_url https://access.redhat.com/errata/RHSA-2026:5437
reference_id RHSA-2026:5437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5437
16
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-118/
reference_id ZDI-26-118
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-21T04:56:42Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-118/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2026-2044
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ubet-venh-tqct
46
url VCID-uujf-3fhp-8fgg
vulnerability_id VCID-uujf-3fhp-8fgg
summary gimp: GIMP: Memory corruption due to integer overflow in ICO file handling
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2272.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2272.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2272
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24277
published_at 2026-04-18T12:55:00Z
1
value 0.00083
scoring_system epss
scoring_elements 0.24309
published_at 2026-04-08T12:55:00Z
2
value 0.00083
scoring_system epss
scoring_elements 0.24352
published_at 2026-04-09T12:55:00Z
3
value 0.00083
scoring_system epss
scoring_elements 0.2437
published_at 2026-04-11T12:55:00Z
4
value 0.00083
scoring_system epss
scoring_elements 0.24328
published_at 2026-04-12T12:55:00Z
5
value 0.00083
scoring_system epss
scoring_elements 0.24271
published_at 2026-04-13T12:55:00Z
6
value 0.00083
scoring_system epss
scoring_elements 0.24288
published_at 2026-04-16T12:55:00Z
7
value 0.00083
scoring_system epss
scoring_elements 0.2446
published_at 2026-04-04T12:55:00Z
8
value 0.00083
scoring_system epss
scoring_elements 0.24243
published_at 2026-04-07T12:55:00Z
9
value 0.00085
scoring_system epss
scoring_elements 0.24729
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2272
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2272
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2272
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127842
reference_id 1127842
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127842
5
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/15617
reference_id 15617
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T13:43:56Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/15617
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2438428
reference_id 2438428
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T13:43:56Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2438428
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
11
reference_url https://access.redhat.com/security/cve/CVE-2026-2272
reference_id CVE-2026-2272
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T13:43:56Z/
url https://access.redhat.com/security/cve/CVE-2026-2272
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2026-2272
risk_score 1.9
exploitability 0.5
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uujf-3fhp-8fgg
47
url VCID-vjn6-7mrr-j7cn
vulnerability_id VCID-vjn6-7mrr-j7cn
summary 
Multiple vulnerabilities have been discovered in GIMP, allowing for the
    remote execution of arbitrary code.
references
0
reference_url http://issues.foresightlinux.org/browse/FL-457
reference_id
reference_type
scores
url http://issues.foresightlinux.org/browse/FL-457
1
reference_url http://osvdb.org/37804
reference_id
reference_type
scores
url http://osvdb.org/37804
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2949.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2949.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-2949
reference_id
reference_type
scores
0
value 0.34769
scoring_system epss
scoring_elements 0.97029
published_at 2026-04-18T12:55:00Z
1
value 0.34769
scoring_system epss
scoring_elements 0.96988
published_at 2026-04-01T12:55:00Z
2
value 0.34769
scoring_system epss
scoring_elements 0.96995
published_at 2026-04-02T12:55:00Z
3
value 0.34769
scoring_system epss
scoring_elements 0.96999
published_at 2026-04-04T12:55:00Z
4
value 0.34769
scoring_system epss
scoring_elements 0.97001
published_at 2026-04-07T12:55:00Z
5
value 0.34769
scoring_system epss
scoring_elements 0.97011
published_at 2026-04-08T12:55:00Z
6
value 0.34769
scoring_system epss
scoring_elements 0.97012
published_at 2026-04-09T12:55:00Z
7
value 0.34769
scoring_system epss
scoring_elements 0.97014
published_at 2026-04-11T12:55:00Z
8
value 0.34769
scoring_system epss
scoring_elements 0.97016
published_at 2026-04-13T12:55:00Z
9
value 0.34769
scoring_system epss
scoring_elements 0.97025
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-2949
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2949
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2949
5
reference_url http://secunia.com/advisories/25677
reference_id
reference_type
scores
url http://secunia.com/advisories/25677
6
reference_url http://secunia.com/advisories/25949
reference_id
reference_type
scores
url http://secunia.com/advisories/25949
7
reference_url http://secunia.com/advisories/26044
reference_id
reference_type
scores
url http://secunia.com/advisories/26044
8
reference_url http://secunia.com/advisories/26132
reference_id
reference_type
scores
url http://secunia.com/advisories/26132
9
reference_url http://secunia.com/advisories/26215
reference_id
reference_type
scores
url http://secunia.com/advisories/26215
10
reference_url http://secunia.com/advisories/26384
reference_id
reference_type
scores
url http://secunia.com/advisories/26384
11
reference_url http://secunia.com/advisories/26575
reference_id
reference_type
scores
url http://secunia.com/advisories/26575
12
reference_url http://secunia.com/advisories/26939
reference_id
reference_type
scores
url http://secunia.com/advisories/26939
13
reference_url http://secunia.com/advisories/28114
reference_id
reference_type
scores
url http://secunia.com/advisories/28114
14
reference_url http://secunia.com/secunia_research/2007-63/advisory/
reference_id
reference_type
scores
url http://secunia.com/secunia_research/2007-63/advisory/
15
reference_url http://security.gentoo.org/glsa/glsa-200707-09.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-200707-09.xml
16
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/35246
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/35246
17
reference_url https://issues.rpath.com/browse/RPL-1487
reference_id
reference_type
scores
url https://issues.rpath.com/browse/RPL-1487
18
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11276
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11276
19
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5772
reference_id
reference_type
scores
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5772
20
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1
reference_id
reference_type
scores
url http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1
21
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1
reference_id
reference_type
scores
url http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1
22
reference_url http://svn.gnome.org/viewcvs/gimp?view=revision&revision=22798
reference_id
reference_type
scores
url http://svn.gnome.org/viewcvs/gimp?view=revision&revision=22798
23
reference_url http://www.debian.org/security/2007/dsa-1335
reference_id
reference_type
scores
url http://www.debian.org/security/2007/dsa-1335
24
reference_url http://www.kb.cert.org/vuls/id/399896
reference_id
reference_type
scores
url http://www.kb.cert.org/vuls/id/399896
25
reference_url http://www.mandriva.com/security/advisories?name=MDKSA-2007:170
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDKSA-2007:170
26
reference_url http://www.novell.com/linux/security/advisories/2007_15_sr.html
reference_id
reference_type
scores
url http://www.novell.com/linux/security/advisories/2007_15_sr.html
27
reference_url http://www.redhat.com/support/errata/RHSA-2007-0513.html
reference_id
reference_type
scores
url http://www.redhat.com/support/errata/RHSA-2007-0513.html
28
reference_url http://www.securityfocus.com/bid/24745
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/24745
29
reference_url http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.360191
reference_id
reference_type
scores
url http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.360191
30
reference_url http://www.ubuntu.com/usn/usn-480-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/usn-480-1
31
reference_url http://www.vupen.com/english/advisories/2007/2421
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/2421
32
reference_url http://www.vupen.com/english/advisories/2007/4241
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2007/4241
33
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=244400
reference_id 244400
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=244400
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-2949
reference_id CVE-2007-2949
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2007-2949
39
reference_url https://security.gentoo.org/glsa/200707-09
reference_id GLSA-200707-09
reference_type
scores
url https://security.gentoo.org/glsa/200707-09
40
reference_url https://access.redhat.com/errata/RHSA-2007:0513
reference_id RHSA-2007:0513
reference_type
scores
url https://access.redhat.com/errata/RHSA-2007:0513
41
reference_url https://usn.ubuntu.com/480-1/
reference_id USN-480-1
reference_type
scores
url https://usn.ubuntu.com/480-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.4.7-1
purl pkg:deb/debian/gimp@2.4.7-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-23ev-8ph6-qyd8
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-35p4-a8t3-f3g1
6
vulnerability VCID-4wae-t183-yydb
7
vulnerability VCID-5ds4-62sx-xud3
8
vulnerability VCID-5yx1-7s7z-m3ar
9
vulnerability VCID-6uzq-6ejf-kudc
10
vulnerability VCID-6yt4-22x4-2kdk
11
vulnerability VCID-81y4-4cxp-bybu
12
vulnerability VCID-99yx-7yr3-dfht
13
vulnerability VCID-bcwp-42cm-g3et
14
vulnerability VCID-bf8d-qkyh-auds
15
vulnerability VCID-bhsc-qy1f-27dj
16
vulnerability VCID-bq1c-u55x-5beh
17
vulnerability VCID-cdfh-uhac-sbam
18
vulnerability VCID-dav9-9ar6-gkbn
19
vulnerability VCID-dtpr-ndvm-5udg
20
vulnerability VCID-eybg-sjmd-q7a2
21
vulnerability VCID-fta8-9na3-u3hb
22
vulnerability VCID-g7zy-qgvc-cueg
23
vulnerability VCID-gdxp-wy9y-m3h1
24
vulnerability VCID-hkc8-4uw7-2yc3
25
vulnerability VCID-hrab-t25s-5ybg
26
vulnerability VCID-jy45-8uuz-y7bf
27
vulnerability VCID-krn9-65fh-sqgq
28
vulnerability VCID-nb8e-umcc-yudg
29
vulnerability VCID-q23d-29ut-uyhd
30
vulnerability VCID-qsyr-7tn1-uyhv
31
vulnerability VCID-r1ds-par2-5kb4
32
vulnerability VCID-rgcb-3vf1-23dk
33
vulnerability VCID-rraw-1e9t-x3f3
34
vulnerability VCID-s17j-j45c-nqgs
35
vulnerability VCID-sn31-adaw-8kbz
36
vulnerability VCID-svvz-6tap-wqbe
37
vulnerability VCID-tq1x-gwac-6uc9
38
vulnerability VCID-tth9-nncy-5qap
39
vulnerability VCID-u8j3-25up-5bcb
40
vulnerability VCID-ubet-venh-tqct
41
vulnerability VCID-uujf-3fhp-8fgg
42
vulnerability VCID-wbtb-bfgn-4bhq
43
vulnerability VCID-wj9c-s6kt-tqag
44
vulnerability VCID-y7a9-2p1n-z7fx
45
vulnerability VCID-ye1p-fndf-h7b9
46
vulnerability VCID-ygcy-xz6u-1qav
47
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.4.7-1
aliases CVE-2007-2949
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vjn6-7mrr-j7cn
48
url VCID-wbtb-bfgn-4bhq
vulnerability_id VCID-wbtb-bfgn-4bhq
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2763.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2763.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2763
reference_id
reference_type
scores
0
value 0.88834
scoring_system epss
scoring_elements 0.99513
published_at 2026-04-01T12:55:00Z
1
value 0.88834
scoring_system epss
scoring_elements 0.99512
published_at 2026-04-02T12:55:00Z
2
value 0.88834
scoring_system epss
scoring_elements 0.99514
published_at 2026-04-07T12:55:00Z
3
value 0.88834
scoring_system epss
scoring_elements 0.99515
published_at 2026-04-08T12:55:00Z
4
value 0.88834
scoring_system epss
scoring_elements 0.99516
published_at 2026-04-09T12:55:00Z
5
value 0.88834
scoring_system epss
scoring_elements 0.99517
published_at 2026-04-13T12:55:00Z
6
value 0.88834
scoring_system epss
scoring_elements 0.99519
published_at 2026-04-16T12:55:00Z
7
value 0.88834
scoring_system epss
scoring_elements 0.9952
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2763
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2763
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2763
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=824541
reference_id 824541
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=824541
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/18956.c
reference_id CVE-2012-2763;OSVDB-82429
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/18956.c
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/18973.rb
reference_id CVE-2012-2763;OSVDB-82429
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/18973.rb
6
reference_url http://www.reactionpenetrationtesting.co.uk/advisories/scriptfu-buffer-overflow-GIMP-2.6.html
reference_id CVE-2012-2763;OSVDB-82429
reference_type exploit
scores
url http://www.reactionpenetrationtesting.co.uk/advisories/scriptfu-buffer-overflow-GIMP-2.6.html
7
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2012-2763
risk_score 1.6
exploitability 2.0
weighted_severity 0.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wbtb-bfgn-4bhq
49
url VCID-wj9c-s6kt-tqag
vulnerability_id VCID-wj9c-s6kt-tqag
summary security update
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17785.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17785.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-17785
reference_id
reference_type
scores
0
value 0.00366
scoring_system epss
scoring_elements 0.58516
published_at 2026-04-01T12:55:00Z
1
value 0.00366
scoring_system epss
scoring_elements 0.58666
published_at 2026-04-18T12:55:00Z
2
value 0.00366
scoring_system epss
scoring_elements 0.58667
published_at 2026-04-11T12:55:00Z
3
value 0.00366
scoring_system epss
scoring_elements 0.58648
published_at 2026-04-12T12:55:00Z
4
value 0.00366
scoring_system epss
scoring_elements 0.58628
published_at 2026-04-13T12:55:00Z
5
value 0.00366
scoring_system epss
scoring_elements 0.58661
published_at 2026-04-16T12:55:00Z
6
value 0.00366
scoring_system epss
scoring_elements 0.586
published_at 2026-04-02T12:55:00Z
7
value 0.00366
scoring_system epss
scoring_elements 0.58622
published_at 2026-04-04T12:55:00Z
8
value 0.00366
scoring_system epss
scoring_elements 0.58591
published_at 2026-04-07T12:55:00Z
9
value 0.00366
scoring_system epss
scoring_elements 0.58643
published_at 2026-04-08T12:55:00Z
10
value 0.00366
scoring_system epss
scoring_elements 0.58649
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-17785
2
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=739133
reference_id
reference_type
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=739133
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17784
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17785
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17786
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17787
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17788
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17789
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.1
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:N/I:N/A:P
1
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2017/12/msg00023.html
11
reference_url https://www.debian.org/security/2017/dsa-4077
reference_id
reference_type
scores
url https://www.debian.org/security/2017/dsa-4077
12
reference_url http://www.openwall.com/lists/oss-security/2017/12/19/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/12/19/5
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1529147
reference_id 1529147
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1529147
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884836
reference_id 884836
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884836
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:2.8.22:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-17785
reference_id CVE-2017-17785
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-17785
21
reference_url https://usn.ubuntu.com/3539-1/
reference_id USN-3539-1
reference_type
scores
url https://usn.ubuntu.com/3539-1/
22
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
purl pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-g7zy-qgvc-cueg
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-hkc8-4uw7-2yc3
17
vulnerability VCID-hrab-t25s-5ybg
18
vulnerability VCID-jy45-8uuz-y7bf
19
vulnerability VCID-krn9-65fh-sqgq
20
vulnerability VCID-q23d-29ut-uyhd
21
vulnerability VCID-qsyr-7tn1-uyhv
22
vulnerability VCID-r1ds-par2-5kb4
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-s17j-j45c-nqgs
25
vulnerability VCID-tth9-nncy-5qap
26
vulnerability VCID-ubet-venh-tqct
27
vulnerability VCID-uujf-3fhp-8fgg
28
vulnerability VCID-wj9c-s6kt-tqag
29
vulnerability VCID-ygcy-xz6u-1qav
30
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.14-1%252Bdeb8u2
1
url pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
purl pkg:deb/debian/gimp@2.8.18-1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-4wae-t183-yydb
5
vulnerability VCID-81y4-4cxp-bybu
6
vulnerability VCID-99yx-7yr3-dfht
7
vulnerability VCID-bcwp-42cm-g3et
8
vulnerability VCID-bf8d-qkyh-auds
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-dav9-9ar6-gkbn
11
vulnerability VCID-dtpr-ndvm-5udg
12
vulnerability VCID-eybg-sjmd-q7a2
13
vulnerability VCID-g7zy-qgvc-cueg
14
vulnerability VCID-gdxp-wy9y-m3h1
15
vulnerability VCID-hkc8-4uw7-2yc3
16
vulnerability VCID-hrab-t25s-5ybg
17
vulnerability VCID-jy45-8uuz-y7bf
18
vulnerability VCID-krn9-65fh-sqgq
19
vulnerability VCID-q23d-29ut-uyhd
20
vulnerability VCID-qsyr-7tn1-uyhv
21
vulnerability VCID-r1ds-par2-5kb4
22
vulnerability VCID-rraw-1e9t-x3f3
23
vulnerability VCID-s17j-j45c-nqgs
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-wj9c-s6kt-tqag
28
vulnerability VCID-ygcy-xz6u-1qav
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.18-1%252Bdeb9u1
2
url pkg:deb/debian/gimp@2.10.8-2
purl pkg:deb/debian/gimp@2.10.8-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-81y4-4cxp-bybu
5
vulnerability VCID-99yx-7yr3-dfht
6
vulnerability VCID-bcwp-42cm-g3et
7
vulnerability VCID-bhsc-qy1f-27dj
8
vulnerability VCID-dav9-9ar6-gkbn
9
vulnerability VCID-dtpr-ndvm-5udg
10
vulnerability VCID-eybg-sjmd-q7a2
11
vulnerability VCID-gdxp-wy9y-m3h1
12
vulnerability VCID-hrab-t25s-5ybg
13
vulnerability VCID-jy45-8uuz-y7bf
14
vulnerability VCID-krn9-65fh-sqgq
15
vulnerability VCID-qsyr-7tn1-uyhv
16
vulnerability VCID-rraw-1e9t-x3f3
17
vulnerability VCID-s17j-j45c-nqgs
18
vulnerability VCID-tth9-nncy-5qap
19
vulnerability VCID-ubet-venh-tqct
20
vulnerability VCID-uujf-3fhp-8fgg
21
vulnerability VCID-ygcy-xz6u-1qav
22
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.8-2
aliases CVE-2017-17785
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wj9c-s6kt-tqag
50
url VCID-y7a9-2p1n-z7fx
vulnerability_id VCID-y7a9-2p1n-z7fx
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code or Denial of Service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2896.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2896.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-2896
reference_id
reference_type
scores
0
value 0.07216
scoring_system epss
scoring_elements 0.9157
published_at 2026-04-01T12:55:00Z
1
value 0.07216
scoring_system epss
scoring_elements 0.91578
published_at 2026-04-02T12:55:00Z
2
value 0.07216
scoring_system epss
scoring_elements 0.91584
published_at 2026-04-04T12:55:00Z
3
value 0.07216
scoring_system epss
scoring_elements 0.91593
published_at 2026-04-07T12:55:00Z
4
value 0.07216
scoring_system epss
scoring_elements 0.91606
published_at 2026-04-08T12:55:00Z
5
value 0.07216
scoring_system epss
scoring_elements 0.91612
published_at 2026-04-09T12:55:00Z
6
value 0.07216
scoring_system epss
scoring_elements 0.91616
published_at 2026-04-11T12:55:00Z
7
value 0.07216
scoring_system epss
scoring_elements 0.91618
published_at 2026-04-12T12:55:00Z
8
value 0.07216
scoring_system epss
scoring_elements 0.91615
published_at 2026-04-13T12:55:00Z
9
value 0.07216
scoring_system epss
scoring_elements 0.91637
published_at 2026-04-16T12:55:00Z
10
value 0.07216
scoring_system epss
scoring_elements 0.9163
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-2896
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2896
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2896
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=643753
reference_id 643753
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=643753
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=727800
reference_id 727800
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=727800
5
reference_url https://security.gentoo.org/glsa/201209-23
reference_id GLSA-201209-23
reference_type
scores
url https://security.gentoo.org/glsa/201209-23
6
reference_url https://access.redhat.com/errata/RHSA-2011:1635
reference_id RHSA-2011:1635
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:1635
7
reference_url https://access.redhat.com/errata/RHSA-2012:0302
reference_id RHSA-2012:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:0302
8
reference_url https://access.redhat.com/errata/RHSA-2012:1180
reference_id RHSA-2012:1180
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1180
9
reference_url https://access.redhat.com/errata/RHSA-2012:1181
reference_id RHSA-2012:1181
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1181
10
reference_url https://usn.ubuntu.com/1207-1/
reference_id USN-1207-1
reference_type
scores
url https://usn.ubuntu.com/1207-1/
11
reference_url https://usn.ubuntu.com/1214-1/
reference_id USN-1214-1
reference_type
scores
url https://usn.ubuntu.com/1214-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2011-2896
risk_score 0.1
exploitability 0.5
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y7a9-2p1n-z7fx
51
url VCID-ye1p-fndf-h7b9
vulnerability_id VCID-ye1p-fndf-h7b9
summary 
Multiple vulnerabilities have been found in GIMP, the worst of
    which allow execution of arbitrary code.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00020.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00020.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00000.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00000.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2012-1180.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1180.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2012-1181.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1181.html
4
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3403.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3403.json
5
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3403
reference_id
reference_type
scores
0
value 0.04289
scoring_system epss
scoring_elements 0.88872
published_at 2026-04-18T12:55:00Z
1
value 0.04289
scoring_system epss
scoring_elements 0.88805
published_at 2026-04-01T12:55:00Z
2
value 0.04289
scoring_system epss
scoring_elements 0.88813
published_at 2026-04-02T12:55:00Z
3
value 0.04289
scoring_system epss
scoring_elements 0.88829
published_at 2026-04-04T12:55:00Z
4
value 0.04289
scoring_system epss
scoring_elements 0.88832
published_at 2026-04-07T12:55:00Z
5
value 0.04289
scoring_system epss
scoring_elements 0.88849
published_at 2026-04-08T12:55:00Z
6
value 0.04289
scoring_system epss
scoring_elements 0.88854
published_at 2026-04-09T12:55:00Z
7
value 0.04289
scoring_system epss
scoring_elements 0.88866
published_at 2026-04-11T12:55:00Z
8
value 0.04289
scoring_system epss
scoring_elements 0.88862
published_at 2026-04-12T12:55:00Z
9
value 0.04289
scoring_system epss
scoring_elements 0.88861
published_at 2026-04-13T12:55:00Z
10
value 0.04289
scoring_system epss
scoring_elements 0.88874
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3403
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3403
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3403
7
reference_url http://secunia.com/advisories/50296
reference_id
reference_type
scores
url http://secunia.com/advisories/50296
8
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2012:142
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2012:142
9
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2013:082
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2013:082
10
reference_url http://www.openwall.com/lists/oss-security/2012/08/20/7
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2012/08/20/7
11
reference_url http://www.securityfocus.com/bid/55101
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/55101
12
reference_url http://www.securitytracker.com/id?1027411
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1027411
13
reference_url http://www.ubuntu.com/usn/USN-1559-1
reference_id
reference_type
scores
url http://www.ubuntu.com/usn/USN-1559-1
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685397
reference_id 685397
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685397
15
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=839020
reference_id 839020
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=839020
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-3403
reference_id CVE-2012-3403
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2012-3403
18
reference_url https://security.gentoo.org/glsa/201311-05
reference_id GLSA-201311-05
reference_type
scores
url https://security.gentoo.org/glsa/201311-05
19
reference_url https://access.redhat.com/errata/RHSA-2012:1180
reference_id RHSA-2012:1180
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1180
20
reference_url https://access.redhat.com/errata/RHSA-2012:1181
reference_id RHSA-2012:1181
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1181
21
reference_url https://usn.ubuntu.com/1559-1/
reference_id USN-1559-1
reference_type
scores
url https://usn.ubuntu.com/1559-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
purl pkg:deb/debian/gimp@2.8.2-2%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1w47-u2aa-8uaj
1
vulnerability VCID-2k57-pmhe-9uds
2
vulnerability VCID-2p8s-2h2y-aqg4
3
vulnerability VCID-2yr2-zppt-47eq
4
vulnerability VCID-35p4-a8t3-f3g1
5
vulnerability VCID-4wae-t183-yydb
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-bcwp-42cm-g3et
9
vulnerability VCID-bf8d-qkyh-auds
10
vulnerability VCID-bhsc-qy1f-27dj
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dtpr-ndvm-5udg
13
vulnerability VCID-eybg-sjmd-q7a2
14
vulnerability VCID-fta8-9na3-u3hb
15
vulnerability VCID-g7zy-qgvc-cueg
16
vulnerability VCID-gdxp-wy9y-m3h1
17
vulnerability VCID-hkc8-4uw7-2yc3
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-q23d-29ut-uyhd
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-r1ds-par2-5kb4
24
vulnerability VCID-rgcb-3vf1-23dk
25
vulnerability VCID-rraw-1e9t-x3f3
26
vulnerability VCID-s17j-j45c-nqgs
27
vulnerability VCID-tth9-nncy-5qap
28
vulnerability VCID-ubet-venh-tqct
29
vulnerability VCID-uujf-3fhp-8fgg
30
vulnerability VCID-wj9c-s6kt-tqag
31
vulnerability VCID-ygcy-xz6u-1qav
32
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.8.2-2%252Bdeb7u1
aliases CVE-2012-3403
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ye1p-fndf-h7b9
52
url VCID-ygcy-xz6u-1qav
vulnerability_id VCID-ygcy-xz6u-1qav
summary Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44442.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44442.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-44442
reference_id
reference_type
scores
0
value 0.6033
scoring_system epss
scoring_elements 0.98266
published_at 2026-04-02T12:55:00Z
1
value 0.6033
scoring_system epss
scoring_elements 0.98286
published_at 2026-04-18T12:55:00Z
2
value 0.6033
scoring_system epss
scoring_elements 0.9827
published_at 2026-04-07T12:55:00Z
3
value 0.6033
scoring_system epss
scoring_elements 0.98275
published_at 2026-04-09T12:55:00Z
4
value 0.6033
scoring_system epss
scoring_elements 0.98278
published_at 2026-04-11T12:55:00Z
5
value 0.6033
scoring_system epss
scoring_elements 0.98279
published_at 2026-04-13T12:55:00Z
6
value 0.6033
scoring_system epss
scoring_elements 0.98285
published_at 2026-04-16T12:55:00Z
7
value 0.6033
scoring_system epss
scoring_elements 0.98269
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-44442
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44441
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44442
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44443
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44444
6
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
reference_id 1055984
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055984
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2249942
reference_id 2249942
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2249942
9
reference_url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
reference_id gimp-2-10-36-released
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-19T13:15:13Z/
url https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/
10
reference_url https://security.gentoo.org/glsa/202501-02
reference_id GLSA-202501-02
reference_type
scores
url https://security.gentoo.org/glsa/202501-02
11
reference_url https://access.redhat.com/errata/RHSA-2024:0675
reference_id RHSA-2024:0675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0675
12
reference_url https://access.redhat.com/errata/RHSA-2024:0702
reference_id RHSA-2024:0702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0702
13
reference_url https://access.redhat.com/errata/RHSA-2024:0716
reference_id RHSA-2024:0716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0716
14
reference_url https://access.redhat.com/errata/RHSA-2024:0861
reference_id RHSA-2024:0861
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0861
15
reference_url https://access.redhat.com/errata/RHSA-2024:0862
reference_id RHSA-2024:0862
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0862
16
reference_url https://access.redhat.com/errata/RHSA-2024:0863
reference_id RHSA-2024:0863
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0863
17
reference_url https://access.redhat.com/errata/RHSA-2024:1007
reference_id RHSA-2024:1007
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1007
18
reference_url https://access.redhat.com/errata/RHSA-2024:10666
reference_id RHSA-2024:10666
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:10666
19
reference_url https://access.redhat.com/errata/RHSA-2024:1327
reference_id RHSA-2024:1327
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1327
20
reference_url https://access.redhat.com/errata/RHSA-2025:0746
reference_id RHSA-2025:0746
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:0746
21
reference_url https://access.redhat.com/errata/RHSA-2025:3617
reference_id RHSA-2025:3617
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3617
22
reference_url https://access.redhat.com/errata/RHSA-2025:3629
reference_id RHSA-2025:3629
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3629
23
reference_url https://access.redhat.com/errata/RHSA-2025:7417
reference_id RHSA-2025:7417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:7417
24
reference_url https://usn.ubuntu.com/6521-1/
reference_id USN-6521-1
reference_type
scores
url https://usn.ubuntu.com/6521-1/
25
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1594/
reference_id ZDI-23-1594
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-19T13:15:13Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1594/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-1w47-u2aa-8uaj
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-3sqk-cbwn-tqa7
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-9v2z-2myu-bfd3
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-d967-53mv-13b6
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dkmg-nu4f-xbay
13
vulnerability VCID-dtpr-ndvm-5udg
14
vulnerability VCID-fraw-9hj8-vbhs
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-gfzg-1hvp-5ugd
17
vulnerability VCID-hj85-sup9-abft
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-ney7-z8qy-kuce
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-va44-vsem-xuf5
28
vulnerability VCID-wkrp-v537-x3hy
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2
aliases CVE-2023-44442, ZDI-CAN-22094
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ygcy-xz6u-1qav
53
url VCID-z2up-g7ms-gfg2
vulnerability_id VCID-z2up-g7ms-gfg2
summary A vulnerability has been discovered in GIMP, which can lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10934.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10934.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-10934
reference_id
reference_type
scores
0
value 0.00058
scoring_system epss
scoring_elements 0.18241
published_at 2026-04-02T12:55:00Z
1
value 0.00058
scoring_system epss
scoring_elements 0.17996
published_at 2026-04-07T12:55:00Z
2
value 0.00058
scoring_system epss
scoring_elements 0.18293
published_at 2026-04-04T12:55:00Z
3
value 0.00068
scoring_system epss
scoring_elements 0.2109
published_at 2026-04-13T12:55:00Z
4
value 0.00068
scoring_system epss
scoring_elements 0.21184
published_at 2026-04-11T12:55:00Z
5
value 0.00068
scoring_system epss
scoring_elements 0.21142
published_at 2026-04-12T12:55:00Z
6
value 0.00068
scoring_system epss
scoring_elements 0.21081
published_at 2026-04-16T12:55:00Z
7
value 0.00068
scoring_system epss
scoring_elements 0.21091
published_at 2026-04-18T12:55:00Z
8
value 0.00068
scoring_system epss
scoring_elements 0.21113
published_at 2026-04-08T12:55:00Z
9
value 0.00068
scoring_system epss
scoring_elements 0.21174
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-10934
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10934
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10934
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1119661
reference_id 1119661
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1119661
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2407233
reference_id 2407233
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2407233
6
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/5c3e2122d53869599d77ef0f1bdece117b24fd7c
reference_id 5c3e2122d53869599d77ef0f1bdece117b24fd7c
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-30T03:56:07Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/5c3e2122d53869599d77ef0f1bdece117b24fd7c
7
reference_url https://security.gentoo.org/glsa/202601-03
reference_id GLSA-202601-03
reference_type
scores
url https://security.gentoo.org/glsa/202601-03
8
reference_url https://access.redhat.com/errata/RHSA-2025:21968
reference_id RHSA-2025:21968
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:21968
9
reference_url https://access.redhat.com/errata/RHSA-2025:22417
reference_id RHSA-2025:22417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22417
10
reference_url https://access.redhat.com/errata/RHSA-2025:22445
reference_id RHSA-2025:22445
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22445
11
reference_url https://access.redhat.com/errata/RHSA-2025:22496
reference_id RHSA-2025:22496
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22496
12
reference_url https://access.redhat.com/errata/RHSA-2025:22497
reference_id RHSA-2025:22497
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22497
13
reference_url https://access.redhat.com/errata/RHSA-2025:22498
reference_id RHSA-2025:22498
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22498
14
reference_url https://access.redhat.com/errata/RHSA-2025:22866
reference_id RHSA-2025:22866
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22866
15
reference_url https://access.redhat.com/errata/RHSA-2025:23857
reference_id RHSA-2025:23857
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23857
16
reference_url https://access.redhat.com/errata/RHSA-2026:0027
reference_id RHSA-2026:0027
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0027
17
reference_url https://access.redhat.com/errata/RHSA-2026:0250
reference_id RHSA-2026:0250
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0250
18
reference_url https://access.redhat.com/errata/RHSA-2026:0356
reference_id RHSA-2026:0356
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0356
19
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
20
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-978/
reference_id ZDI-25-978
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-30T03:56:07Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-978/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
aliases CVE-2025-10934
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z2up-g7ms-gfg2
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@1.0.0-1