Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/571282?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/571282?format=api", "purl": "pkg:deb/debian/tiff@3.8.2-7%2Betch3", "type": "deb", "namespace": "debian", "name": "tiff", "version": "3.8.2-7+etch3", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "4.5.0-6+deb12u4", "latest_non_vulnerable_version": "4.7.1-2", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19276?format=api", "vulnerability_id": "VCID-15g8-3ryu-h3ga", "summary": "Integer Overflow or Wraparound\nA vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41175.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41175.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51572", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51675", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51655", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51606", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00282", "scoring_system": "epss", "scoring_elements": "0.51612", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56787", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56816", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56828", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56805", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56784", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56815", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56767", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.56764", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-41175" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235264", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-29T19:34:04Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235264" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-41175", "reference_id": "CVE-2023-41175", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-29T19:34:04Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-41175" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41175", "reference_id": "CVE-2023-41175", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-41175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2289", "reference_id": "RHSA-2024:2289", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-29T19:34:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2289" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-41175" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-15g8-3ryu-h3ga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63848?format=api", "vulnerability_id": "VCID-1asc-7axg-6ben", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15209.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15209.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70176", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70188", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70205", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70182", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70228", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70243", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70266", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70251", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70238", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.7028", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70289", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.7027", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70323", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70331", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00628", "scoring_system": "epss", "scoring_elements": "0.70329", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1614051", "reference_id": "1614051", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1614051" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905798", "reference_id": "905798", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905798" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:5079", "reference_id": "RHSA-2024:5079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:5079" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-15209" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1asc-7axg-6ben" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61008?format=api", "vulnerability_id": "VCID-1cjh-zx12-2fh2", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5318.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5318.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5318", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74774", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74764", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74771", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74648", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74652", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74678", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74685", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74699", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74723", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74702", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74694", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74731", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74739", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00839", "scoring_system": "epss", "scoring_elements": "0.74729", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5318" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344068", "reference_id": "1344068", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344068" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5318" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1cjh-zx12-2fh2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63804?format=api", "vulnerability_id": "VCID-1csm-m3wq-tbck", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11335.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11335.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80186", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80323", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.803", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80306", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80194", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80214", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80203", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80231", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80241", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80259", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80245", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80239", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80269", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80271", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01374", "scoring_system": "epss", "scoring_elements": "0.80274", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1474356", "reference_id": "1474356", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1474356" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868513", "reference_id": "868513", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868513" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-11335" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1csm-m3wq-tbck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47125?format=api", "vulnerability_id": "VCID-1dhy-s5x3-fuf7", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2209", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2209" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2596.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77066", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77046", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77053", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76913", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76919", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76949", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76931", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76963", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76974", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77002", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76981", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.76976", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77017", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77019", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00999", "scoring_system": "epss", "scoring_elements": "0.77011", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2596" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2596" }, { "reference_url": "http://secunia.com/advisories/40422", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40422" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=610759", "reference_id": "610759", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=610759" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2596", "reference_id": "CVE-2010-2596", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2596" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2010-2596" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1dhy-s5x3-fuf7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58077?format=api", "vulnerability_id": "VCID-1ecn-xrs5-hubq", "summary": "security update", "references": [ { "reference_url": "http://openwall.com/lists/oss-security/2015/01/24/16", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2015/01/24/16" }, { "reference_url": "http://openwall.com/lists/oss-security/2015/02/07/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2015/02/07/5" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.8901", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89102", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89093", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89099", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89018", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89034", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89036", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89054", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89058", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.8907", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89066", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89064", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89079", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89078", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0445", "scoring_system": "epss", "scoring_elements": "0.89074", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/bid/73438", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/73438" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190709", "reference_id": "1190709", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190709" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390", "reference_id": "777390", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-1547", "reference_id": "CVE-2015-1547", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-1547" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2015-1547" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1ecn-xrs5-hubq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81353?format=api", "vulnerability_id": "VCID-1j12-qxks-wkdh", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10270.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10270.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56752", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56897", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56845", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56867", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56843", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56894", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56906", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56886", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63228", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63237", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.6325", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63216", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63236", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63192", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10270" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/vadz/libtiff/commit/9a72a69e035ee70ff5c41541c8c61cd97990d018", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/9a72a69e035ee70ff5c41541c8c61cd97990d018" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97200", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97200" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438441", "reference_id": "1438441", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438441" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=846837", "reference_id": "846837", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=846837" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10270", "reference_id": "CVE-2016-10270", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10270" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10270" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1j12-qxks-wkdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14383?format=api", "vulnerability_id": "VCID-1mh3-q3y5-qyg1", "summary": "Out-of-bounds Read\nLibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28448", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28028", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28219", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28107", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28542", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28585", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28387", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28453", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28495", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28497", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28454", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28405", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2842", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28398", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28345", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/410", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/410" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084269", "reference_id": "2084269", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084269" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1622", "reference_id": "CVE-2022-1622", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1622" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json", "reference_id": "CVE-2022-1622.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1622" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1mh3-q3y5-qyg1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/74691?format=api", "vulnerability_id": "VCID-1nme-2pjx-q7hp", "summary": "libtiff: NULL pointer dereference in tif_dirinfo.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7006.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7006.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7006", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00501", "scoring_system": "epss", "scoring_elements": "0.66082", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00501", "scoring_system": "epss", "scoring_elements": "0.66084", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.67684", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.67672", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.67638", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.67673", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.67685", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00541", "scoring_system": "epss", "scoring_elements": "0.67664", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70115", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70036", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70051", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70028", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70076", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70092", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7006" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7006", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7006" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078648", "reference_id": "1078648", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078648" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302996", "reference_id": "2302996", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302996" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-7006", "reference_id": "CVE-2024-7006", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-7006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:6360", "reference_id": "RHSA-2024:6360", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:6360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8833", "reference_id": "RHSA-2024:8833", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:8833" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8914", "reference_id": "RHSA-2024:8914", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:8914" }, { "reference_url": "https://usn.ubuntu.com/6997-1/", "reference_id": "USN-6997-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6997-1/" }, { "reference_url": "https://usn.ubuntu.com/6997-2/", "reference_id": "USN-6997-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6997-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2024-7006" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1nme-2pjx-q7hp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60992?format=api", "vulnerability_id": "VCID-1pbp-smgt-duey", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3623.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81677", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81663", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81672", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81533", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81545", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81567", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81565", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81592", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81598", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81618", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81605", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81635", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81636", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01585", "scoring_system": "epss", "scoring_elements": "0.81639", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325089", "reference_id": "1325089", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325089" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3623" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1pbp-smgt-duey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63808?format=api", "vulnerability_id": "VCID-1rsr-q1uf-ekav", "summary": "security update", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2770", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2770" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18013.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18013.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50399", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50505", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50482", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50467", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.5051", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50515", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50492", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50438", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50447", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50416", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.5047", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0027", "scoring_system": "epss", "scoring_elements": "0.50463", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00392", "scoring_system": "epss", "scoring_elements": "0.60153", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00392", "scoring_system": "epss", "scoring_elements": "0.60075", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00392", "scoring_system": "epss", "scoring_elements": "0.60178", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00033.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00033.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00034.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4100" }, { "reference_url": "http://www.securityfocus.com/bid/102345", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102345" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530440", "reference_id": "1530440", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530440" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885985", "reference_id": "885985", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885985" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18013", "reference_id": "CVE-2017-18013", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18013" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-18013" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1rsr-q1uf-ekav" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60988?format=api", "vulnerability_id": "VCID-255p-pm39-1bb3", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3619.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3619.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3619", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76508", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76489", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76496", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76364", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76368", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76398", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76379", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76412", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76426", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76452", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.7643", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76425", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76466", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.7647", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00955", "scoring_system": "epss", "scoring_elements": "0.76456", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3619" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3619", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3619" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316569", "reference_id": "1316569", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316569" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820362", "reference_id": "820362", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820362" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3619" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-255p-pm39-1bb3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13265?format=api", "vulnerability_id": "VCID-25fx-7kmb-fqhm", "summary": "Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0924.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0924.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17922", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18128", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18072", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18084", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18116", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18023", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17999", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18082", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18166", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18222", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18226", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18179", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24564", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24601", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24438", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/278", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/278" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/311" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064148", "reference_id": "2064148", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064148" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0924", "reference_id": "CVE-2022-0924", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0924" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0924.json", "reference_id": "CVE-2022-0924.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0924.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0924" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-25fx-7kmb-fqhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60997?format=api", "vulnerability_id": "VCID-28t9-d8gb-b3h9", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3633.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3633.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3633", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63799", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63789", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63802", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.6366", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.6372", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63745", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63706", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63758", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63775", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63788", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63773", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63739", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63785", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3633" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3633", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3633" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326255", "reference_id": "1326255", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326255" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046", "reference_id": "842046", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3633" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-28t9-d8gb-b3h9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60994?format=api", "vulnerability_id": "VCID-2a5b-7k5n-73fx", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3625.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3625.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3625", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70506", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70446", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70497", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70352", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70364", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70381", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.7036", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70406", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70421", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70445", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.7043", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70416", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70458", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70466", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3625" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3625", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3625" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325091", "reference_id": "1325091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325091" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2016-3625" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2a5b-7k5n-73fx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18009?format=api", "vulnerability_id": "VCID-2ds7-xq64-9ue2", "summary": "NULL Pointer Dereference\nA NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3316.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3316.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3316", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05658", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.0569", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05697", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.0573", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05757", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05735", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05727", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05721", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06223", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06263", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0605", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06254", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0606", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06208", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3316" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216080", "reference_id": "2216080", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216080" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/468", "reference_id": "468", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/468" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/515", "reference_id": "515", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/515" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3316", "reference_id": "CVE-2023-3316", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3316" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2023-3316" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2ds7-xq64-9ue2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85343?format=api", "vulnerability_id": "VCID-2e1s-2q8y-h3er", "summary": "libtiff: Assertion failure in TIFFWriteDirectoryTagCheckedRational", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2535", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2535" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2612", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2612" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10371.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10371.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10371", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65091", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65225", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65217", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65214", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65227", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65141", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65167", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65132", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65182", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65195", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65213", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.652", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65173", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00482", "scoring_system": "epss", "scoring_elements": "0.65207", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10371" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10371", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10371" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449534", "reference_id": "1449534", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449534" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862929", "reference_id": "862929", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862929" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10371", "reference_id": "CVE-2016-10371", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10371" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10371" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2e1s-2q8y-h3er" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47122?format=api", "vulnerability_id": "VCID-2e7g-3p2y-dfcc", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=1996", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=1996" }, { "reference_url": "http://marc.info/?l=oss-security&m=127736307002102&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127736307002102&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127738540902757&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127738540902757&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127797353202873&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127797353202873&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2482.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2482.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2482", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95319", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95258", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.9527", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95276", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95281", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95289", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95291", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95296", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95297", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95299", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95307", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.9531", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95314", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95315", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.18826", "scoring_system": "epss", "scoring_elements": "0.95318", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2482" }, { "reference_url": "https://bugs.launchpad.net/bugs/597246", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/bugs/597246" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=603024", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=603024" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2482" }, { "reference_url": "http://secunia.com/advisories/40422", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40422" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2552", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2012/dsa-2552" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2010/06/30/22", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2010/06/30/22" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=608010", "reference_id": "608010", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=608010" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2482", "reference_id": "CVE-2010-2482", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2482" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/14573.txt", "reference_id": "CVE-2010-2482;OSVDB-66083", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/14573.txt" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2482" ], "risk_score": 7.8, "exploitability": "2.0", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2e7g-3p2y-dfcc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60142?format=api", "vulnerability_id": "VCID-2hvh-x482-5qhw", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2651", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2651" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7593.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7593.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58114", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58192", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58199", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.5822", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58247", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58252", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58269", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58245", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.5929", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.59297", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.59279", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.5926", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.59264", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.59253", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97502", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97502" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441246", "reference_id": "1441246", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441246" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860000", "reference_id": "860000", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860000" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7593", "reference_id": "CVE-2017-7593", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7593" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7593" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2hvh-x482-5qhw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60141?format=api", "vulnerability_id": "VCID-2qg1-nxq2-jkht", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2658", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2658" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7592.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7592.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42024", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42232", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42164", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42111", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42107", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57603", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57464", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57548", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57569", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57544", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57597", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57601", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57616", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57596", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00351", "scoring_system": "epss", "scoring_elements": "0.57574", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97510", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97510" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441240", "reference_id": "1441240", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441240" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859998", "reference_id": "859998", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859998" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7592", "reference_id": "CVE-2017-7592", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7592" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7592" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2qg1-nxq2-jkht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16438?format=api", "vulnerability_id": "VCID-2u8w-cy3j-9fen", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0800.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0800.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07234", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07302", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07278", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07256", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07311", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07338", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07335", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07323", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07243", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07239", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07365", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07329", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/496", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/496" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170167", "reference_id": "2170167", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170167" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0800", "reference_id": "CVE-2023-0800", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0800" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0800.json", "reference_id": "CVE-2023-0800.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0800.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:01:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0800" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2u8w-cy3j-9fen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60993?format=api", "vulnerability_id": "VCID-36t6-pnx8-xugd", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3624.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.80042", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.8002", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.80026", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79912", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79919", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.7994", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79928", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79957", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79966", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79986", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.7997", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79961", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79989", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01333", "scoring_system": "epss", "scoring_elements": "0.79991", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325090", "reference_id": "1325090", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325090" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3624" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-36t6-pnx8-xugd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82580?format=api", "vulnerability_id": "VCID-39ee-trms-qkes", "summary": "libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19144.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19144.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19144", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81099", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81108", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81133", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81131", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81159", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81165", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81184", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81171", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81164", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81201", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81202", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.812", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81222", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.8123", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01504", "scoring_system": "epss", "scoring_elements": "0.81236", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19144" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19144", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19144" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003799", "reference_id": "2003799", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003799" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2020-19144" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-39ee-trms-qkes" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60152?format=api", "vulnerability_id": "VCID-3rd2-fv4n-tybf", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9403.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9403.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9403", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76452", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76594", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76576", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.7658", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76456", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76485", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76467", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76499", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76511", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76537", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76516", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.7651", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76551", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76555", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76543", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9403" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9403", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9403" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458902", "reference_id": "1458902", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458902" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9403" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3rd2-fv4n-tybf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19277?format=api", "vulnerability_id": "VCID-3wfj-nc9t-xfgp", "summary": "Integer Overflow or Wraparound\nLibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40745.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40745.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51401", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51503", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51481", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51434", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.5144", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56696", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56671", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.5665", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56681", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56688", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56632", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56653", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56683", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-40745" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235265", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235265" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-40745", "reference_id": "CVE-2023-40745", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2023-40745" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40745", "reference_id": "CVE-2023-40745", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40745" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2289", "reference_id": "RHSA-2024:2289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2289" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-40745" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3wfj-nc9t-xfgp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83489?format=api", "vulnerability_id": "VCID-43cd-stdq-pbc9", "summary": "libtiff: heap-based buffer over-read in TIFFWriteScanline function in tif_write.c", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2788", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2788" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10779.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10779.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10779", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66276", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66424", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.6635", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66385", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66401", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66386", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66409", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66314", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66342", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66312", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.6636", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66373", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.66394", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00509", "scoring_system": "epss", "scoring_elements": "0.6638", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10779" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/104089", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104089" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577311", "reference_id": "1577311", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577311" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898359", "reference_id": "898359", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898359" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-816", "reference_id": "AVG-816", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-816" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10779", "reference_id": "CVE-2018-10779", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10779" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2018-10779" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-43cd-stdq-pbc9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79310?format=api", "vulnerability_id": "VCID-44ee-ueju-ykae", "summary": "libtiff: division by zero issues in tiffcrop", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25652", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.2579", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25763", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25707", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25699", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25771", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25841", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25893", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25904", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25862", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25805", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25808", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27786", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27824", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/427", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/427" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494", "reference_id": "1014494", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222", "reference_id": "2103222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2057", "reference_id": "CVE-2022-2057", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2057" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2057.json", "reference_id": "CVE-2022-2057.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2057.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2057" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-44ee-ueju-ykae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16452?format=api", "vulnerability_id": "VCID-44zu-mtmq-57cm", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0801.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0801.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07234", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07302", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07278", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07256", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07311", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07338", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07335", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07323", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07243", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07239", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07365", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07329", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/498", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/498" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170172", "reference_id": "2170172", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170172" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0801", "reference_id": "CVE-2023-0801", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0801" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0801.json", "reference_id": "CVE-2023-0801.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0801.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:00:40Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0801" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-44zu-mtmq-57cm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81325?format=api", "vulnerability_id": "VCID-45tr-e5rv-6uch", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9540.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9540.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.6175", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61915", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61926", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61906", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61923", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61824", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61854", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61825", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61874", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61889", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.6191", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61899", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61878", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61922", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9540" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397768", "reference_id": "1397768", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397768" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9540" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-45tr-e5rv-6uch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63626?format=api", "vulnerability_id": "VCID-45zg-bst2-byff", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10688.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10688.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10688", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06109", "scoring_system": "epss", "scoring_elements": "0.90815", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.06109", "scoring_system": "epss", "scoring_elements": "0.9082", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91305", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91309", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.9132", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91327", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91339", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91346", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91353", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91356", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91355", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91381", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06845", "scoring_system": "epss", "scoring_elements": "0.91379", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10688" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1470241", "reference_id": "1470241", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1470241" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866611", "reference_id": "866611", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866611" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2712", "reference_id": "CVE-2017-10688", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2712" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42299.txt", "reference_id": "CVE-2017-10688", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42299.txt" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-10688" ], "risk_score": 6.0, "exploitability": "2.0", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-45zg-bst2-byff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79411?format=api", "vulnerability_id": "VCID-48tr-y71p-7fbb", "summary": "libtiff: Assertion fail in rotateImage() function at tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17852", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17911", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17887", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18202", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18256", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17957", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18043", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18113", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.1807", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.1802", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17962", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.17973", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18005", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/424" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122792", "reference_id": "2122792", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122792" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2520", "reference_id": "CVE-2022-2520", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2520" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2520" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-48tr-y71p-7fbb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61006?format=api", "vulnerability_id": "VCID-4e6e-nkkd-j3ef", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5316.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5316.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75072", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75065", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75069", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.7495", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.74953", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.74982", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.74957", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.74991", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75003", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75025", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75004", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.74993", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75029", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75037", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00858", "scoring_system": "epss", "scoring_elements": "0.75026", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346690", "reference_id": "1346690", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346690" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5316" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4e6e-nkkd-j3ef" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16434?format=api", "vulnerability_id": "VCID-4egk-vvjq-dyhw", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0795.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0795.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02005", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02015", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02012", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02013", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0203", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01999", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01995", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01973", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01975", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0206", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02044", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02039", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/493", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/493" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170119", "reference_id": "2170119", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170119" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0795", "reference_id": "CVE-2023-0795", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0795" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0795.json", "reference_id": "CVE-2023-0795.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0795.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:12:34Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0795" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4egk-vvjq-dyhw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13252?format=api", "vulnerability_id": "VCID-4mq7-s2p6-yufr", "summary": "Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0907.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0907.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42924", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.4282", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42969", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42901", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42902", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42988", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43015", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42952", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43002", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43014", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43036", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42985", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43045", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43033", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/392", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/392" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/314" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064143", "reference_id": "2064143", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064143" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0907", "reference_id": "CVE-2022-0907", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0907" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0907.json", "reference_id": "CVE-2022-0907.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0907.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0907" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4mq7-s2p6-yufr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/39037?format=api", "vulnerability_id": "VCID-4n8m-6c1e-f7ba", "summary": "A vulnerability in libTIFF could lead to a Denial of Service\n condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18557.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18557.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.96134", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.9611", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.96112", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.96115", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.96124", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.96128", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.9613", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.96132", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.24463", "scoring_system": "epss", "scoring_elements": "0.96133", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.30054", "scoring_system": "epss", "scoring_elements": "0.96652", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.30054", "scoring_system": "epss", "scoring_elements": "0.96644", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.32235", "scoring_system": "epss", "scoring_elements": "0.96816", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.32235", "scoring_system": "epss", "scoring_elements": "0.96807", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.32235", "scoring_system": "epss", "scoring_elements": "0.96814", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644229", "reference_id": "1644229", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644229" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911635", "reference_id": "911635", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911635" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1697", "reference_id": "CVE-2018-18557", "reference_type": "exploit", "scores": [], "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1697" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/45694.c", "reference_id": "CVE-2018-18557", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/45694.c" }, { "reference_url": "https://security.gentoo.org/glsa/201904-15", "reference_id": "GLSA-201904-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-15" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-18557" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4n8m-6c1e-f7ba" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16450?format=api", "vulnerability_id": "VCID-4pys-mah6-hfh6", "summary": "Use After Free\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0799.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0799.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02715", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02852", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0273", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02737", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0274", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0276", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02731", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02712", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02692", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02702", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02816", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02806", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02794", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/494", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/494" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170162", "reference_id": "2170162", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170162" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0799", "reference_id": "CVE-2023-0799", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0799" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0799.json", "reference_id": "CVE-2023-0799.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0799.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:34Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0799" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4pys-mah6-hfh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79413?format=api", "vulnerability_id": "VCID-4srx-3gbk-eqd3", "summary": "libtiff: out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3626.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3626.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10954", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10876", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11009", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11006", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10977", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11479", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11505", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11509", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11632", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11588", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11548", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12237", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12191", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142741", "reference_id": "2142741", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142741" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047", "reference_id": "236b7191f04c60d09ee836ae13b50f812c841047", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/426", "reference_id": "426", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/426" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3626", "reference_id": "CVE-2022-3626", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3626" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json", "reference_id": "CVE-2022-3626.json", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3626" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4srx-3gbk-eqd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47116?format=api", "vulnerability_id": "VCID-5d2c-qx3t-97b9", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/043769.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/043769.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/043835.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-July/043835.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1411.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1411.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1411", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73139", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.72989", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.72999", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73019", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.72995", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73032", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73046", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.7307", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73049", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73043", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73087", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73096", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73089", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73127", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.7314", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1411" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1411", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1411" }, { "reference_url": "http://secunia.com/advisories/40181", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40181" }, { "reference_url": "http://secunia.com/advisories/40196", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40196" }, { "reference_url": "http://secunia.com/advisories/40220", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40220" }, { "reference_url": "http://secunia.com/advisories/40381", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40381" }, { "reference_url": "http://secunia.com/advisories/40478", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40478" }, { "reference_url": "http://secunia.com/advisories/40527", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40527" }, { "reference_url": "http://secunia.com/advisories/40536", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40536" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://securitytracker.com/id?1024103", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securitytracker.com/id?1024103" }, { "reference_url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424", "reference_id": "", "reference_type": "", "scores": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424" }, { "reference_url": "http://support.apple.com/kb/HT4188", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4188" }, { "reference_url": "http://support.apple.com/kb/HT4196", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4196" }, { "reference_url": "http://support.apple.com/kb/HT4220", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4220" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0520.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0520.html" }, { "reference_url": "http://www.remotesensing.org/libtiff/v3.9.3.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.remotesensing.org/libtiff/v3.9.3.html" }, { "reference_url": "http://www.securityfocus.com/bid/40823", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/40823" }, { "reference_url": "http://www.ubuntu.com/usn/USN-954-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-954-1" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1435", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1435" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1481", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1481" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1512", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1512" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1638", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1638" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1731", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1731" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1761", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=592361", "reference_id": "592361", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=592361" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1411", "reference_id": "CVE-2010-1411", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1411" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0519", "reference_id": "RHSA-2010:0519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0520", "reference_id": "RHSA-2010:0520", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0520" }, { "reference_url": "https://usn.ubuntu.com/954-1/", "reference_id": "USN-954-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/954-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-1411" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5d2c-qx3t-97b9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60981?format=api", "vulnerability_id": "VCID-5h29-wne5-gbd7", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://packetstormsecurity.com/files/135080/libtiff-4.0.6-Heap-Overflow.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://packetstormsecurity.com/files/135080/libtiff-4.0.6-Heap-Overflow.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8668.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8668.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8668", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91289", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91279", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91278", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91281", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0671", "scoring_system": "epss", "scoring_elements": "0.91291", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.91688", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.91697", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.91702", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.9171", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.91723", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.91729", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.91732", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.91734", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.07386", "scoring_system": "epss", "scoring_elements": "0.9173", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8668" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8668", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8668" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/537208/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/537208/100/0/threaded" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294425", "reference_id": "1294425", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294425" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046", "reference_id": "842046", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8668", "reference_id": "CVE-2015-8668", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8668" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8668" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5h29-wne5-gbd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12870?format=api", "vulnerability_id": "VCID-5mak-1mkk-wkdg", "summary": "NULL Pointer Dereference\nNull source pointer passed as an argument to `memcpy()` function within `TIFFFetchStripThing()` in `tif_dirread.c` in libtiff could lead to Denial of Service via crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0561.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0561.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18283", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18461", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18404", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18418", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.1844", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18342", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18326", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18425", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18505", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18557", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.1856", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18512", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27971", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.28012", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27915", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/362" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054494", "reference_id": "2054494", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054494" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0561", "reference_id": "CVE-2022-0561", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0561" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0561.json", "reference_id": "CVE-2022-0561.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0561.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0561" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5mak-1mkk-wkdg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84389?format=api", "vulnerability_id": "VCID-5t8u-vcjy-t7hx", "summary": "libtiff: Heap-based buffer over-read in bmp2tiff", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9117.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9117.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9117", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.30006", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29612", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29785", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29672", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.30046", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.30092", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29905", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29967", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.30002", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.30007", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29961", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29912", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29929", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29909", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00114", "scoring_system": "epss", "scoring_elements": "0.29863", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9117" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9117", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9117" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1456756", "reference_id": "1456756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1456756" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9117" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5t8u-vcjy-t7hx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58073?format=api", "vulnerability_id": "VCID-5uu1-xncw-vkej", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77018", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76933", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76928", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.7697", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76973", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76965", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76998", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.77005", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76953", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01033", "scoring_system": "epss", "scoring_elements": "0.7731", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01033", "scoring_system": "epss", "scoring_elements": "0.77301", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01033", "scoring_system": "epss", "scoring_elements": "0.7733", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01033", "scoring_system": "epss", "scoring_elements": "0.77294", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01033", "scoring_system": "epss", "scoring_elements": "0.77341", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01033", "scoring_system": "epss", "scoring_elements": "0.7735", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185812", "reference_id": "1185812", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185812" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-8128" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5uu1-xncw-vkej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47129?format=api", "vulnerability_id": "VCID-5y1x-36cj-gbdk", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://blackberry.com/btsc/KB27244", "reference_id": "", "reference_type": "", "scores": [], "url": "http://blackberry.com/btsc/KB27244" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3087.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3087.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-3087", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82815", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.8267", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82686", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82699", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82695", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82721", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82728", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82745", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82739", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82736", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82774", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82775", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82778", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.82801", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.8281", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-3087" }, { "reference_url": "https://bugzilla.novell.com/show_bug.cgi?id=624215", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.novell.com/show_bug.cgi?id=624215" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3087", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3087" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://support.novell.com/security/cve/CVE-2010-3087.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.novell.com/security/cve/CVE-2010-3087.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=600188", "reference_id": "600188", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=600188" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=638301", "reference_id": "638301", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=638301" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3087", "reference_id": "CVE-2010-3087", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3087" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-3087" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5y1x-36cj-gbdk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/59341?format=api", "vulnerability_id": "VCID-6cry-skqu-zke9", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35522.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35522.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35522", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13085", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13194", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1326", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1306", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13142", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13193", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13162", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13123", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13071", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.12973", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.12976", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13073", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13066", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13035", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1293", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35522" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35522", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35522" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932037", "reference_id": "1932037", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932037" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35522", "reference_id": "CVE-2020-35522", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35522" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35522" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6cry-skqu-zke9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18129?format=api", "vulnerability_id": "VCID-6dt6-ppka-b3ct", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26966.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26966.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26966", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07301", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07297", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07283", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07273", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07203", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07198", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07323", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07282", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07241", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.0722", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07274", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08031", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08398", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0003", "scoring_system": "epss", "scoring_elements": "0.08366", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26966" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/530", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/530" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/473", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/473" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218749", "reference_id": "2218749", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218749" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26966", "reference_id": "CVE-2023-26966", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26966" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2023-26966" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6dt6-ppka-b3ct" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47121?format=api", "vulnerability_id": "VCID-6fqg-cbea-97g2", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2210", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2210" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127736307002102&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127736307002102&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127738540902757&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127738540902757&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127781315415896&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127781315415896&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127797353202873&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127797353202873&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2481.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2481.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2481", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81825", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81683", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81693", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81717", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81713", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.8174", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81745", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81764", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81752", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81746", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81784", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81787", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.81811", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01608", "scoring_system": "epss", "scoring_elements": "0.8182", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2481" }, { "reference_url": "http://secunia.com/advisories/40527", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40527" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2010/06/30/22", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2010/06/30/22" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1761", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=611895", "reference_id": "611895", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=611895" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2481", "reference_id": "CVE-2010-2481", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2481" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0519", "reference_id": "RHSA-2010:0519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0519" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2481" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6fqg-cbea-97g2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79860?format=api", "vulnerability_id": "VCID-6kck-g3z6-cuge", "summary": "libtiff: uint32_t underflow leads to out of bounds read and write in tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03602", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03423", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03542", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03549", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03555", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03511", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03512", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03536", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.0349", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03462", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03437", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03412", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0743", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07472", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118847", "reference_id": "2118847", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118847" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2867", "reference_id": "CVE-2022-2867", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2867" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://usn.ubuntu.com/5604-1/", "reference_id": "USN-5604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5604-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2867" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6kck-g3z6-cuge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61017?format=api", "vulnerability_id": "VCID-6ngq-ungb-sycm", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8331.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8331.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8331", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90832", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90837", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90848", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90858", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.9087", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90876", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90885", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90884", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90909", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90906", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90907", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.9092", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90918", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.06223", "scoring_system": "epss", "scoring_elements": "0.90916", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8331" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389229", "reference_id": "1389229", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389229" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-8331" ], "risk_score": 3.6, "exploitability": "0.5", "weighted_severity": "7.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ngq-ungb-sycm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60139?format=api", "vulnerability_id": "VCID-6q62-2xsj-6kgp", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5225.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5225.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76155", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76006", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76009", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76041", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.7602", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76053", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76068", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76093", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76069", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76066", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76107", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76111", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76133", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00928", "scoring_system": "epss", "scoring_elements": "0.76143", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00953", "scoring_system": "epss", "scoring_elements": "0.76436", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1037911", "reference_id": "1037911", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://www.securitytracker.com/id/1037911" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1412716", "reference_id": "1412716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1412716" }, { "reference_url": "https://github.com/vadz/libtiff/commit/5c080298d59efa53264d7248bbe3a04660db6ef7", "reference_id": "5c080298d59efa53264d7248bbe3a04660db6ef7", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "https://github.com/vadz/libtiff/commit/5c080298d59efa53264d7248bbe3a04660db6ef7" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851297", "reference_id": "851297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851297" }, { "reference_url": "http://www.securityfocus.com/bid/95413", "reference_id": "95413", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://www.securityfocus.com/bid/95413" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2656", "reference_id": "show_bug.cgi?id=2656", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2656" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2657", "reference_id": "show_bug.cgi?id=2657", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-10T15:25:23Z/" } ], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2657" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-4/", "reference_id": "USN-3212-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-5225" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6q62-2xsj-6kgp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/59342?format=api", "vulnerability_id": "VCID-6sb9-u71x-j7f5", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35523.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35523.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35523", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45379", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45569", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45566", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45431", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.4544", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.4547", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45525", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45527", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45546", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45516", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00227", "scoring_system": "epss", "scoring_elements": "0.45521", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00268", "scoring_system": "epss", "scoring_elements": "0.50258", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00268", "scoring_system": "epss", "scoring_elements": "0.50287", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00268", "scoring_system": "epss", "scoring_elements": "0.50218", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35523" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932040", "reference_id": "1932040", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932040" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35523", "reference_id": "CVE-2020-35523", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35523" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" }, { "reference_url": "https://usn.ubuntu.com/4755-1/", "reference_id": "USN-4755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4755-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35523" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6sb9-u71x-j7f5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/59340?format=api", "vulnerability_id": "VCID-6sx9-1yfw-63cg", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35521.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35521.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35521", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22025", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2224", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22193", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22052", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22039", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22184", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22267", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22321", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22341", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.223", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22241", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22245", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30312", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.3036", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30283", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35521" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932034", "reference_id": "1932034", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932034" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35521", "reference_id": "CVE-2020-35521", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35521" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35521" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6sx9-1yfw-63cg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79575?format=api", "vulnerability_id": "VCID-6wzx-7a3m-ufhm", "summary": "libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07556", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07606", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0762", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07633", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07614", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08043", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08007", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07992", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0815", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08107", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08071", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08413", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0836", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142742", "reference_id": "2142742", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142742" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047", "reference_id": "236b7191f04c60d09ee836ae13b50f812c841047", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/411", "reference_id": "411", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/411" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3627", "reference_id": "CVE-2022-3627", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3627" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json", "reference_id": "CVE-2022-3627.json", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2883", "reference_id": "RHSA-2023:2883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2883" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3627" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6wzx-7a3m-ufhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14381?format=api", "vulnerability_id": "VCID-72yx-48n1-jbfs", "summary": "Out-of-bounds Read\nLibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.55978", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56157", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56145", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56133", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56117", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56151", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56153", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56089", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.56109", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00332", "scoring_system": "epss", "scoring_elements": "0.5614", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56823", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56865", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00342", "scoring_system": "epss", "scoring_elements": "0.56806", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/410", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/410" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084260", "reference_id": "2084260", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084260" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1623", "reference_id": "CVE-2022-1623", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1623" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json", "reference_id": "CVE-2022-1623.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1623" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-72yx-48n1-jbfs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79410?format=api", "vulnerability_id": "VCID-76g4-kacn-7yg7", "summary": "libtiff: Double free or corruption in rotateImage() function at tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31241", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31448", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31322", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31775", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31819", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31638", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31689", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31718", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31722", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31681", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31644", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31678", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31657", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31625", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/423" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122789", "reference_id": "2122789", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122789" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2519", "reference_id": "CVE-2022-2519", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2519" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-76g4-kacn-7yg7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81352?format=api", "vulnerability_id": "VCID-7a2s-a1kp-wke1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10269.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10269.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57178", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57248", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57288", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57245", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57268", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57258", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57282", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57259", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57311", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57313", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57326", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57307", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57285", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57314", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00347", "scoring_system": "epss", "scoring_elements": "0.57309", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10269" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2016-10269" }, { "reference_url": "https://github.com/vadz/libtiff/commit/1044b43637fa7f70fb19b93593777b78bd20da86", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/1044b43637fa7f70fb19b93593777b78bd20da86" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97201", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97201" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438443", "reference_id": "1438443", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438443" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10269", "reference_id": "CVE-2016-10269", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10269" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10269" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7a2s-a1kp-wke1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61019?format=api", "vulnerability_id": "VCID-7dzd-xznd-jug7", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9297.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9297.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69096", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69258", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.6919", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69241", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.6925", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69112", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69134", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69115", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69165", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69184", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69206", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69191", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69162", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.69202", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00589", "scoring_system": "epss", "scoring_elements": "0.6921", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395264", "reference_id": "1395264", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395264" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844226", "reference_id": "844226", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844226" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9297" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7dzd-xznd-jug7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81329?format=api", "vulnerability_id": "VCID-7fes-a88m-q3ft", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10271.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10271.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61763", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.6193", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61941", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61924", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.6192", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61837", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61867", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61839", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61888", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61904", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61925", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61913", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61893", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.61937", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10271" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a" }, { "reference_url": "http://www.securityfocus.com/bid/97199", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97199" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438453", "reference_id": "1438453", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438453" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10271", "reference_id": "CVE-2016-10271", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10271" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10271" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7fes-a88m-q3ft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50130?format=api", "vulnerability_id": "VCID-7jpu-rtje-mke4", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19210.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19210.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89569", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89572", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89585", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89602", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89607", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89615", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89614", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89608", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89621", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.04911", "scoring_system": "epss", "scoring_elements": "0.89623", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.90984", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.90977", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.90989", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.06297", "scoring_system": "epss", "scoring_elements": "0.90987", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1649385", "reference_id": "1649385", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1649385" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913675", "reference_id": "913675", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913675" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-19210" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7jpu-rtje-mke4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81321?format=api", "vulnerability_id": "VCID-7xr6-sn1k-t7cw", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9534.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9534.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63449", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.6359", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63563", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63582", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63595", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63509", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63536", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.635", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63552", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63569", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63585", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.6357", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63572", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00448", "scoring_system": "epss", "scoring_elements": "0.63579", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397751", "reference_id": "1397751", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397751" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9534" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7xr6-sn1k-t7cw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60982?format=api", "vulnerability_id": "VCID-81ew-t25a-f7gq", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43074", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.42972", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43196", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43186", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43118", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43053", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43055", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43132", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43159", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43098", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43151", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43163", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43184", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43136", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2015/12/25/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2015/12/25/1" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2015/12/26/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2015/12/26/1" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/bid/79718", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/79718" }, { "reference_url": "http://www.securitytracker.com/id/1035508", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1035508" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2939-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2939-1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294427", "reference_id": "1294427", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294427" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021", "reference_id": "809021", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8683", "reference_id": "CVE-2015-8683", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8683" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8683" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-81ew-t25a-f7gq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60999?format=api", "vulnerability_id": "VCID-83hb-ksrb-yyb5", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3658.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3658.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76459", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76438", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76445", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76316", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76319", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76349", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76329", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76361", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76375", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76401", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76379", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76373", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76413", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.7642", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00951", "scoring_system": "epss", "scoring_elements": "0.76404", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326257", "reference_id": "1326257", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326257" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3658" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-83hb-ksrb-yyb5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47117?format=api", "vulnerability_id": "VCID-85fe-fkve-auhp", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010", "reference_id": "", "reference_type": "", "scores": [], "url": "http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2065.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2065.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2065", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86148", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86108", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86103", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86121", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86126", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86119", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86139", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02797", "scoring_system": "epss", "scoring_elements": "0.86149", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.04787", "scoring_system": "epss", "scoring_elements": "0.89482", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04787", "scoring_system": "epss", "scoring_elements": "0.89437", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04787", "scoring_system": "epss", "scoring_elements": "0.89441", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04787", "scoring_system": "epss", "scoring_elements": "0.89452", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.04787", "scoring_system": "epss", "scoring_elements": "0.89454", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.04787", "scoring_system": "epss", "scoring_elements": "0.8947", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04787", "scoring_system": "epss", "scoring_elements": "0.89473", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2065" }, { "reference_url": "https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/589565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/589565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2065", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2065" }, { "reference_url": "http://secunia.com/advisories/40181", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40181" }, { "reference_url": "http://secunia.com/advisories/40381", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40381" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424", "reference_id": "", "reference_type": "", "scores": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:043", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:043" }, { "reference_url": "http://www.remotesensing.org/libtiff/v3.9.3.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.remotesensing.org/libtiff/v3.9.3.html" }, { "reference_url": "http://www.ubuntu.com/usn/USN-954-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-954-1" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1638", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1638" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0204", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0204" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0621", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0621" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=601274", "reference_id": "601274", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=601274" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2065", "reference_id": "CVE-2010-2065", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2065" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://usn.ubuntu.com/954-1/", "reference_id": "USN-954-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/954-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2065" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-85fe-fkve-auhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79311?format=api", "vulnerability_id": "VCID-8691-q4h3-eyaf", "summary": "libtiff: division by zero issues in tiffcrop", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25652", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.2579", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25763", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25707", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25699", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25771", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25841", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25893", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25904", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25862", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25805", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25808", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27786", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27824", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/428" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494", "reference_id": "1014494", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222", "reference_id": "2103222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2058", "reference_id": "CVE-2022-2058", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2058" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2058.json", "reference_id": "CVE-2022-2058.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2058.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2058" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8691-q4h3-eyaf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34236?format=api", "vulnerability_id": "VCID-88t4-hhtf-8fak", "summary": "Multiple vulnerabilities have been found in libTIFF, allowing\n remote attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2012-1590.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2012-1590.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4564.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4564.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4564", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96402", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96352", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.9636", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96364", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96368", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96376", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96379", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96383", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96387", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96393", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96398", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.964", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.27173", "scoring_system": "epss", "scoring_elements": "0.96401", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4564" }, { "reference_url": "http://secunia.com/advisories/51133", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/51133" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79750", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79750" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2575", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2012/dsa-2575" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2012/11/02/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2012/11/02/3" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2012/11/02/7", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2012/11/02/7" }, { "reference_url": "http://www.osvdb.org/86878", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.osvdb.org/86878" }, { "reference_url": "http://www.securityfocus.com/bid/56372", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/56372" }, { "reference_url": "http://www.ubuntu.com/usn/USN-1631-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-1631-1" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692345", "reference_id": "692345", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692345" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=871700", "reference_id": "871700", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=871700" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4564", "reference_id": "CVE-2012-4564", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4564" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1631-1/", "reference_id": "USN-1631-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1631-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-4564" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-88t4-hhtf-8fak" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60986?format=api", "vulnerability_id": "VCID-8f48-6u7s-xyht", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2508", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2508" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81194", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81329", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81295", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81317", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81324", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81203", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81226", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81254", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81259", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81279", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81265", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81258", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81294", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01522", "scoring_system": "epss", "scoring_elements": "0.81296", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/vadz/libtiff/commit/b18012dae552f85dcc5c57d3bf4e997a15b1cc1c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/b18012dae552f85dcc5c57d3bf4e997a15b1cc1c" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/4" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/8", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/8" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/bid/81696", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/81696" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2939-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2939-1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301652", "reference_id": "1301652", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301652" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8784", "reference_id": "CVE-2015-8784", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8784" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8784" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8f48-6u7s-xyht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60985?format=api", "vulnerability_id": "VCID-8kgw-n4zx-uqa8", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2522", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2522" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00058.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00058.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00064.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00064.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70931", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.71079", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.71036", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.7107", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70942", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70959", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70934", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70976", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70992", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.71015", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70999", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.70982", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00655", "scoring_system": "epss", "scoring_elements": "0.71029", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/3" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/7", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/7" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/bid/81730", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/81730" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2939-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2939-1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8783", "reference_id": "CVE-2015-8783", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8783" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8783" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8kgw-n4zx-uqa8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47133?format=api", "vulnerability_id": "VCID-9563-bbjf-wbhu", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1173.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1173.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-1173", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91305", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91309", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.9132", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91327", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.9134", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91347", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91354", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91356", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91381", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91379", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91382", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91391", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.9139", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.06846", "scoring_system": "epss", "scoring_elements": "0.91389", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-1173" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1173", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1173" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=803078", "reference_id": "803078", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=803078" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0468", "reference_id": "RHSA-2012:0468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0468" }, { "reference_url": "https://usn.ubuntu.com/1416-1/", "reference_id": "USN-1416-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1416-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-1173" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9563-bbjf-wbhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61013?format=api", "vulnerability_id": "VCID-98zm-dbqt-g3eg", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5323.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5323.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78029", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78167", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78114", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78147", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78153", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78038", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78067", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.7805", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78076", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.7808", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78106", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78089", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78086", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78121", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.7812", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346696", "reference_id": "1346696", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346696" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5323" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-98zm-dbqt-g3eg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60138?format=api", "vulnerability_id": "VCID-9bfu-xyxk-xuek", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10268.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56514", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56587", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.5666", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56633", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56569", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.5661", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56632", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56661", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56667", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.5665", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.5663", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56662", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10268" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10268" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/vadz/libtiff/commit/5397a417e61258c69209904e652a1f409ec3b9df", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/5397a417e61258c69209904e652a1f409ec3b9df" }, { "reference_url": "http://www.securityfocus.com/bid/97202", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97202" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438447", "reference_id": "1438447", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438447" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10268", "reference_id": "CVE-2016-10268", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10268" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10268" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9bfu-xyxk-xuek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/17669?format=api", "vulnerability_id": "VCID-9gqh-2uat-93c7", "summary": "Out-of-bounds Write\nA vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30774", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06109", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05899", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.0605", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06072", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.06102", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06704", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06697", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06688", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06621", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06598", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06642", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06622", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06671", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06705", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30774" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2187139", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2187139" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30774" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/463", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/463" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-30774", "reference_id": "CVE-2023-30774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2023-30774" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30774", "reference_id": "CVE-2023-30774", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-30774" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9gqh-2uat-93c7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84366?format=api", "vulnerability_id": "VCID-9h6w-8dqt-23fr", "summary": "libtiff: Out of bounds read in _TIFFVGetField", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9147.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9147.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9147", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88014", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88105", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88101", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88107", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88023", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88037", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88043", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88063", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88069", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88079", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88072", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88073", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88086", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88084", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03787", "scoring_system": "epss", "scoring_elements": "0.88083", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9147" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9147", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9147" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1454655", "reference_id": "1454655", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1454655" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863185", "reference_id": "863185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863185" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2693", "reference_id": "CVE-2017-9147", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2693" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42301.txt", "reference_id": "CVE-2017-9147", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42301.txt" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9147" ], "risk_score": 6.0, "exploitability": "2.0", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9h6w-8dqt-23fr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60140?format=api", "vulnerability_id": "VCID-9hyt-7jsq-vqc5", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5563.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5563.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5563", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57678", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57762", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57781", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57754", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.5781", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57811", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57828", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57807", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57785", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57814", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57812", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57788", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57746", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57766", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57744", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5563" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416109", "reference_id": "1416109", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416109" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-5563" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9hyt-7jsq-vqc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87747?format=api", "vulnerability_id": "VCID-9p5z-qwmf-kyb1", "summary": "libtiff: crash when reading image with not configured compression", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2598.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2598.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69106", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.68946", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.68964", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.68984", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.68963", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69013", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69033", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69055", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.6904", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69011", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69051", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.6906", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69091", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00584", "scoring_system": "epss", "scoring_elements": "0.69099", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2598" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2598" }, { "reference_url": "http://secunia.com/advisories/40536", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40536" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0520.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0520.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1761", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=610786", "reference_id": "610786", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=610786" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:3:ga:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:as:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:3:ga:as:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:as:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:desktop:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:3:ga:desktop:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:desktop:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:es:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:3:ga:es:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:es:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:ws:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:3:ga:ws:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:3:ga:ws:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2598", "reference_id": "CVE-2010-2598", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0520", "reference_id": "RHSA-2010:0520", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0520" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2598" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9p5z-qwmf-kyb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81350?format=api", "vulnerability_id": "VCID-a1hq-fqkv-u7d9", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9535.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9535.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69514", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69675", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69609", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69661", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.6967", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69525", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.6954", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.6952", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.6957", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69586", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69608", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69593", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69579", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69619", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00604", "scoring_system": "epss", "scoring_elements": "0.69628", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397755", "reference_id": "1397755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397755" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9535" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a1hq-fqkv-u7d9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60146?format=api", "vulnerability_id": "VCID-a3ze-kdhc-muht", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58282", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58371", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58398", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.5843", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58434", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58412", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58374", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58385", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58368", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58388", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58362", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58414", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58421", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58438", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58417", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7597" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97504", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97504" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441252", "reference_id": "1441252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441252" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7597", "reference_id": "CVE-2017-7597", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7597" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7597" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a3ze-kdhc-muht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73724?format=api", "vulnerability_id": "VCID-aa6m-3c5d-hfat", "summary": "security update", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2798", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2798" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12900.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12900.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.92973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93022", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93014", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93021", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93027", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.92982", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.92986", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.92985", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.92993", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.92998", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93003", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93001", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.09894", "scoring_system": "epss", "scoring_elements": "0.93011", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2018-12900" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595575", "reference_id": "1595575", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1595575" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902718", "reference_id": "902718", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902718" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12900", "reference_id": "CVE-2018-12900", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12900" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3419", "reference_id": "RHSA-2019:3419", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3419" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-12900" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aa6m-3c5d-hfat" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81326?format=api", "vulnerability_id": "VCID-ajwe-qvmr-aqgs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10092.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10092.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84731", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84746", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84765", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84767", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84789", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84796", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84814", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.8481", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84805", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84826", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84827", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84825", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84852", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84862", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02323", "scoring_system": "epss", "scoring_elements": "0.84861", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410067", "reference_id": "1410067", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410067" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10092" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ajwe-qvmr-aqgs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47126?format=api", "vulnerability_id": "VCID-ak8g-1scg-jygh", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2215", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2215" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2597.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80786", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80648", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80656", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80678", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80673", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80702", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80711", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80728", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80714", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80706", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80742", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80743", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80746", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80768", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.80772", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2597" }, { "reference_url": "https://bugs.launchpad.net/bugs/593067", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/bugs/593067" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=603703", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=603703" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2597" }, { "reference_url": "http://secunia.com/advisories/40422", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40422" }, { "reference_url": "http://secunia.com/advisories/40527", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40527" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2552", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2012/dsa-2552" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1761", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=610776", "reference_id": "610776", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=610776" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2597", "reference_id": "CVE-2010-2597", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2597" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0519", "reference_id": "RHSA-2010:0519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0519" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2010-2597" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ak8g-1scg-jygh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79412?format=api", "vulnerability_id": "VCID-ap6w-9c6j-akdp", "summary": "libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31241", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31448", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31322", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31775", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31819", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31638", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31689", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31718", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31722", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31681", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31644", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31678", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31657", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31625", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/422" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/378" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122799", "reference_id": "2122799", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2122799" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2521", "reference_id": "CVE-2022-2521", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2521" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ap6w-9c6j-akdp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40058?format=api", "vulnerability_id": "VCID-as9s-4ugc-ukgy", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1354.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1354.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11193", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11337", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11395", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11188", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11268", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11323", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11329", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11295", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11269", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11131", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11133", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15747", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16367", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16261", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16257", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/319" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074404", "reference_id": "2074404", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074404" }, { "reference_url": "https://security.archlinux.org/AVG-2721", "reference_id": "AVG-2721", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2721" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-1354", "reference_id": "CVE-2022-1354", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2022-1354" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1354", "reference_id": "CVE-2022-1354", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1354" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1354" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-as9s-4ugc-ukgy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80048?format=api", "vulnerability_id": "VCID-at8c-pabb-z3d5", "summary": "libtiff: a buffer overflow via the \"invertImage()\" may lead to DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19131.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19131.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19131", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68029", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.6799", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67972", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68015", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68024", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67898", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67949", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67963", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67974", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67939", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67976", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00798", "scoring_system": "epss", "scoring_elements": "0.73969", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00798", "scoring_system": "epss", "scoring_elements": "0.73995", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00798", "scoring_system": "epss", "scoring_elements": "0.73962", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19131" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19131", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19131" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004031", "reference_id": "2004031", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1810", "reference_id": "RHSA-2022:1810", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1810" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2020-19131" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-at8c-pabb-z3d5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16440?format=api", "vulnerability_id": "VCID-b33v-b6h4-cqfe", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0804.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0804.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04817", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05029", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04842", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.0486", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04897", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04914", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04877", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04858", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04806", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04814", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04959", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04992", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05032", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/497", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/497" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170192", "reference_id": "2170192", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170192" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0804", "reference_id": "CVE-2023-0804", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0804" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0804.json", "reference_id": "CVE-2023-0804.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0804.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FBF3UUFSB6NB3NFTQSKOOIZGXJP3T34Z/", "reference_id": "FBF3UUFSB6NB3NFTQSKOOIZGXJP3T34Z", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FBF3UUFSB6NB3NFTQSKOOIZGXJP3T34Z/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230324-0009/", "reference_id": "ntap-20230324-0009", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T14:46:45Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230324-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0804" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b33v-b6h4-cqfe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/68445?format=api", "vulnerability_id": "VCID-b4hb-cxzy-suck", "summary": "libtiff: LibTIFF Null Pointer Dereference", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-13978.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-13978.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-13978", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10397", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10464", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11597", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11395", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11535", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11561", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11586", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11527", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11441", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14502", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14469", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14397", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.145", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16241", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-13978" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-13978", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-13978" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111323", "reference_id": "1111323", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111323" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2386059", "reference_id": "2386059", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2386059" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/2ebfffb0e8836bfb1cd7d85c059cd285c59761a4", "reference_id": "2ebfffb0e8836bfb1cd7d85c059cd285c59761a4", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/2ebfffb0e8836bfb1cd7d85c059cd285c59761a4" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/649", "reference_id": "649", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/649" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/667", "reference_id": "667", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/667" }, { "reference_url": "https://vuldb.com/?ctiid.318355", "reference_id": "?ctiid.318355", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://vuldb.com/?ctiid.318355" }, { "reference_url": "https://vuldb.com/?id.318355", "reference_id": "?id.318355", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://vuldb.com/?id.318355" }, { "reference_url": "https://vuldb.com/?submit.624562", "reference_id": "?submit.624562", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "https://vuldb.com/?submit.624562" }, { "reference_url": "http://www.libtiff.org/", "reference_id": "www.libtiff.org", "reference_type": "", "scores": [ { "value": "1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:N/I:N/A:P/E:ND/RL:OF/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C" }, { "value": "2", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T14:24:36Z/" } ], "url": "http://www.libtiff.org/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1068108?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994558?format=api", "purl": "pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-vju4-pghv-47bx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1" } ], "aliases": [ "CVE-2024-13978" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b4hb-cxzy-suck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60137?format=api", "vulnerability_id": "VCID-b6cu-zk51-hkdv", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10267.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10267.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61397", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61548", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61552", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61538", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61554", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61474", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61502", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61472", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61519", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61534", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61556", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61542", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61522", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61563", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61567", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10267" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/vadz/libtiff/commit/43bc256d8ae44b92d2734a3c5bc73957a4d7c1ec", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/43bc256d8ae44b92d2734a3c5bc73957a4d7c1ec" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97117", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97117" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438449", "reference_id": "1438449", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438449" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10267", "reference_id": "CVE-2016-10267", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10267" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10267" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b6cu-zk51-hkdv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34238?format=api", "vulnerability_id": "VCID-b7gk-w11p-2uaq", "summary": "Multiple vulnerabilities have been found in libTIFF, allowing\n remote attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104916.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104916.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105253.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105253.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105828.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105828.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00058.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00058.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00080.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00080.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2014-0223.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2014-0223.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83158", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83014", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.8303", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83044", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83042", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83066", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83074", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83089", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83083", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83079", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83118", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.8312", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83143", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01867", "scoring_system": "epss", "scoring_elements": "0.83151", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961" }, { "reference_url": "http://seclists.org/oss-sec/2013/q2/254", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/oss-sec/2013/q2/254" }, { "reference_url": "http://secunia.com/advisories/53237", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/53237" }, { "reference_url": "http://secunia.com/advisories/53765", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/53765" }, { "reference_url": "http://www.debian.org/security/2013/dsa-2698", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2013/dsa-2698" }, { "reference_url": "http://www.securityfocus.com/bid/59607", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/59607" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674", "reference_id": "706674", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=952131", "reference_id": "952131", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952131" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:4.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:4.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:4.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1961", "reference_id": "CVE-2013-1961", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1961" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/1832-1/", "reference_id": "USN-1832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-1961" ], "risk_score": 4.2, "exploitability": "0.5", "weighted_severity": "8.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b7gk-w11p-2uaq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47135?format=api", "vulnerability_id": "VCID-b7tf-9byk-mqa5", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2113.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2113.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2113", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78609", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78616", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78647", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78628", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78654", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78661", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78686", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78667", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78659", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78687", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78685", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78682", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78712", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.7872", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.78737", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2113" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2113", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2113" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140", "reference_id": "678140", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=810551", "reference_id": "810551", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=810551" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1054", "reference_id": "RHSA-2012:1054", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1054" }, { "reference_url": "https://usn.ubuntu.com/1498-1/", "reference_id": "USN-1498-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1498-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-2113" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b7tf-9byk-mqa5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61005?format=api", "vulnerability_id": "VCID-baha-p74p-rff4", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5315.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5315.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.6178", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61775", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61769", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61615", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.6169", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.6172", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61691", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.6174", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61755", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61776", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61764", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61745", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61787", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.61792", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346694", "reference_id": "1346694", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346694" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5315" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-baha-p74p-rff4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83738?format=api", "vulnerability_id": "VCID-bap5-5e3b-8qea", "summary": "LibTIFF: heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5360.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63806", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63867", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63894", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63852", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63902", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63919", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63932", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63918", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63885", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63921", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63931", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63937", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63949", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63947", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5360" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535494", "reference_id": "1535494", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535494" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2018-5360" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bap5-5e3b-8qea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61014?format=api", "vulnerability_id": "VCID-bf8s-peku-2uht", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5652.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5652.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.90982", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91065", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91058", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91071", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91069", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.90987", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.90996", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91007", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91019", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91025", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91033", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91057", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.06401", "scoring_system": "epss", "scoring_elements": "0.91055", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389222", "reference_id": "1389222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389222" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842361", "reference_id": "842361", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842361" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5652" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bf8s-peku-2uht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/17517?format=api", "vulnerability_id": "VCID-bnbg-7q6h-8uhs", "summary": "Out-of-bounds Write\nBuffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c.", "references": [ { "reference_url": "http://libtiff-release-v4-0-7.com", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "http://libtiff-release-v4-0-7.com" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30086", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23177", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23524", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23446", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23391", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23409", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23403", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23386", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23195", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23184", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23561", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23344", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23416", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23467", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23485", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-30086" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30086", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30086" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/538", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/538" }, { "reference_url": "http://tiffcp.com", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "http://tiffcp.com" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2203650", "reference_id": "2203650", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2203650" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30086", "reference_id": "CVE-2023-30086", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30086" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230616-0003/", "reference_id": "ntap-20230616-0003", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230616-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-30086" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bnbg-7q6h-8uhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82581?format=api", "vulnerability_id": "VCID-cbhv-yme7-buby", "summary": "libtiff: buffer overflow in TIFFVGetField() in libtiff/tif_dir.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19143.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-19143.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19143", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76583", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76586", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76615", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76596", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76627", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76639", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76666", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76645", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76636", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76677", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76681", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.7667", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76701", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.76707", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00972", "scoring_system": "epss", "scoring_elements": "0.7672", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-19143" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19143" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003801", "reference_id": "2003801", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2003801" }, { "reference_url": "https://usn.ubuntu.com/5084-1/", "reference_id": "USN-5084-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5084-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-19143" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cbhv-yme7-buby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60995?format=api", "vulnerability_id": "VCID-ceb4-e5mz-4fbp", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3631.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3631.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3631", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73961", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73926", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73953", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73827", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73837", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73862", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73832", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73867", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.7388", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73902", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73884", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73875", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0079", "scoring_system": "epss", "scoring_elements": "0.73918", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3631" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3631", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3631" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316872", "reference_id": "1316872", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316872" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820366", "reference_id": "820366", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820366" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3631" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ceb4-e5mz-4fbp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/59344?format=api", "vulnerability_id": "VCID-cm5h-b1g9-tkg9", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35524.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35524.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35524", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.614", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61477", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61505", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61475", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61523", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61537", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61559", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61546", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61526", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61567", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61571", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61556", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61542", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61558", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00413", "scoring_system": "epss", "scoring_elements": "0.61553", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35524" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35523" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932044", "reference_id": "1932044", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932044" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35524", "reference_id": "CVE-2020-35524", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35524" }, { "reference_url": "https://security.gentoo.org/glsa/202104-06", "reference_id": "GLSA-202104-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4241", "reference_id": "RHSA-2021:4241", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4241" }, { "reference_url": "https://usn.ubuntu.com/4755-1/", "reference_id": "USN-4755-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4755-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2020-35524" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cm5h-b1g9-tkg9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61016?format=api", "vulnerability_id": "VCID-cswr-9c4x-xyg8", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6223.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6223.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79184", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79312", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79254", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79288", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79294", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79191", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79214", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.792", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79225", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79232", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79256", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79241", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79229", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79255", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01239", "scoring_system": "epss", "scoring_elements": "0.79252", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1356867", "reference_id": "1356867", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1356867" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842270", "reference_id": "842270", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842270" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-6223" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cswr-9c4x-xyg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16432?format=api", "vulnerability_id": "VCID-cw7d-us77-2fhv", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0796.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0796.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02005", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02015", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02012", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02013", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0203", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01999", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01995", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01973", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01975", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0206", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02044", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02039", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/499", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/499" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170146", "reference_id": "2170146", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170146" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0796", "reference_id": "CVE-2023-0796", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0796" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0796.json", "reference_id": "CVE-2023-0796.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0796.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:11:08Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0796" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cw7d-us77-2fhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/17945?format=api", "vulnerability_id": "VCID-cwen-8yyj-x3aw", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25434.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43312", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43294", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43326", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43323", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.4326", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46498", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46538", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46549", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46575", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46547", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46556", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46613", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.4661", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46557", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25434" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/519", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:18:44Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/519" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215209", "reference_id": "2215209", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215209" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25434", "reference_id": "CVE-2023-25434", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25434" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-25434" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cwen-8yyj-x3aw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47114?format=api", "vulnerability_id": "VCID-cyy9-qtzt-3kfm", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2347.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2347.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2347", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77585", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77592", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77619", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77601", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77629", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77635", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77662", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77645", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77644", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77681", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77679", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77673", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77703", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77711", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01061", "scoring_system": "epss", "scoring_elements": "0.77727", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2347" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=510041", "reference_id": "510041", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=510041" }, { "reference_url": "https://security.gentoo.org/glsa/200908-03", "reference_id": "GLSA-200908-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200908-03" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1159", "reference_id": "RHSA-2009:1159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1159" }, { "reference_url": "https://usn.ubuntu.com/801-1/", "reference_id": "USN-801-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/801-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2009-2347" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cyy9-qtzt-3kfm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60150?format=api", "vulnerability_id": "VCID-czxa-qesr-gfh5", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.6092", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.6094", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60925", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60915", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60928", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66653", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66545", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66584", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66611", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66582", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.6663", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66644", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66663", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66651", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66618", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7601" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97511", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97511" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441261", "reference_id": "1441261", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441261" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7601", "reference_id": "CVE-2017-7601", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7601" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7601" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-czxa-qesr-gfh5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63803?format=api", "vulnerability_id": "VCID-d3ym-a4bv-ybaz", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9935.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9935.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65403", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65373", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65345", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65381", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65392", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65376", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65394", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65406", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65304", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65367", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65386", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00553", "scoring_system": "epss", "scoring_elements": "0.68014", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00553", "scoring_system": "epss", "scoring_elements": "0.67992", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00553", "scoring_system": "epss", "scoring_elements": "0.68033", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9935" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469725", "reference_id": "1469725", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469725" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866109", "reference_id": "866109", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866109" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-9935" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d3ym-a4bv-ybaz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50132?format=api", "vulnerability_id": "VCID-dh5n-3ubj-1uhu", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2836", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2836" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00041.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00041.html" }, { "reference_url": "http://packetstormsecurity.com/files/155095/Slackware-Security-Advisory-libtiff-Updates.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://packetstormsecurity.com/files/155095/Slackware-Security-Advisory-libtiff-Updates.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6128.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6128.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6128", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84769", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84899", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84865", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84863", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.8489", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.849", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84784", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84803", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84805", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84827", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84833", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84852", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84849", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02335", "scoring_system": "epss", "scoring_elements": "0.84843", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6128" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/commit/0c74a9f49b8d7a36b17b54a7428b3526d20f88a8", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/commit/0c74a9f49b8d7a36b17b54a7428b3526d20f88a8" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/Nov/5", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/Nov/5" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667122", "reference_id": "1667122", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667122" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921157", "reference_id": "921157", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921157" }, { "reference_url": "https://security.archlinux.org/ASA-201911-13", "reference_id": "ASA-201911-13", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201911-13" }, { "reference_url": "https://security.archlinux.org/AVG-886", "reference_id": "AVG-886", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-886" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6128", "reference_id": "CVE-2019-6128", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6128" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-6128" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dh5n-3ubj-1uhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47123?format=api", "vulnerability_id": "VCID-dhpw-sb99-2fhd", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2216", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2216" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127736307002102&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127736307002102&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127738540902757&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127738540902757&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127781315415896&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127781315415896&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127797353202873&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127797353202873&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2483.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2483.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2483", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79571", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79436", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79443", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79467", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79453", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79482", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.7949", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79512", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79495", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79485", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79515", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79513", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79517", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79549", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79555", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2483" }, { "reference_url": "https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/591605", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/591605" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=603081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=603081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2483" }, { "reference_url": "http://secunia.com/advisories/40422", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40422" }, { "reference_url": "http://secunia.com/advisories/40527", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40527" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2010/06/30/22", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2010/06/30/22" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1761", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=611900", "reference_id": "611900", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=611900" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2483", "reference_id": "CVE-2010-2483", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2483" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0519", "reference_id": "RHSA-2010:0519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0519" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2483" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dhpw-sb99-2fhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60148?format=api", "vulnerability_id": "VCID-dkbt-62ad-bqdq", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38907", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.3931", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39223", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39009", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.3899", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54122", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.53998", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54016", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54042", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54019", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54071", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.5407", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54117", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54099", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54082", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7599" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97505", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97505" }, { "reference_url": "http://www.securityfocus.com/bid/97508", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97508" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441259", "reference_id": "1441259", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441259" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7599", "reference_id": "CVE-2017-7599", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7599" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7599" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dkbt-62ad-bqdq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60989?format=api", "vulnerability_id": "VCID-dxtf-qzfj-k3aq", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3620.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3620.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3620", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77182", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77161", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77168", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77032", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77038", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77067", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77048", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.7708", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.7709", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77118", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77098", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77093", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77134", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77136", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77127", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3620" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316859", "reference_id": "1316859", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316859" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820363", "reference_id": "820363", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820363" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3620" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dxtf-qzfj-k3aq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79628?format=api", "vulnerability_id": "VCID-e6c2-ajs1-abdz", "summary": "libtiff: out-of-bounds read in writeSingleSection in tools/tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10852", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10952", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10984", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10983", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10928", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11438", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11468", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1147", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11596", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1155", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11511", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12214", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12168", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142740", "reference_id": "2142740", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142740" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/398", "reference_id": "398", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/398" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3599", "reference_id": "CVE-2022-3599", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3599" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json", "reference_id": "CVE-2022-3599.json", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3599" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e6c2-ajs1-abdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47136?format=api", "vulnerability_id": "VCID-ehyj-jfjv-5ugt", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3401.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3401.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3401", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75847", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.7585", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75882", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75861", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75894", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75907", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.7593", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75912", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75904", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75942", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75945", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75931", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75969", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.75978", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.7599", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3401" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3401", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3401" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=682115", "reference_id": "682115", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=682115" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=837577", "reference_id": "837577", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=837577" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1511-1/", "reference_id": "USN-1511-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1511-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-3401" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ehyj-jfjv-5ugt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/86939?format=api", "vulnerability_id": "VCID-ep61-nfbb-bfgj", "summary": "libtiff: Stack-based buffer overflow when reading a tiled tiff file", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2012-1590.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2012-1590.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5581.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5581.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-5581", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.8203", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81885", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81896", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81919", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81915", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81942", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81949", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81969", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81958", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81953", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81988", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.81991", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.82013", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01642", "scoring_system": "epss", "scoring_elements": "0.82025", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-5581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5581" }, { "reference_url": "http://secunia.com/advisories/51491", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/51491" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80339", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80339" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2589", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2012/dsa-2589" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2012/11/28/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2012/11/28/1" }, { "reference_url": "http://www.securityfocus.com/bid/56715", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/56715" }, { "reference_url": "http://www.ubuntu.com/usn/USN-1655-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-1655-1" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694693", "reference_id": "694693", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694693" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=867235", "reference_id": "867235", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=867235" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta5:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta5:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta5:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta6:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta6:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta6:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5581", "reference_id": "CVE-2012-5581", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5581" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1655-1/", "reference_id": "USN-1655-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1655-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-5581" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ep61-nfbb-bfgj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83101?format=api", "vulnerability_id": "VCID-f1g1-tv8m-pudk", "summary": "libtiff: Heap-based buffer overflow in tiff2pdf.c:t2p_write_pdf()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17795.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17795.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17795", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81352", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81316", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81318", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81317", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81339", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01525", "scoring_system": "epss", "scoring_elements": "0.81347", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81736", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81756", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81743", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81737", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81674", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81732", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81708", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81705", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17795" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1635091", "reference_id": "1635091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1635091" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17795" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f1g1-tv8m-pudk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73725?format=api", "vulnerability_id": "VCID-f2ar-xeec-1bfs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17000.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17000.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78929", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78935", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78963", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78946", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78971", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78977", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79001", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78986", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.78975", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79003", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79031", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79037", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79052", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1630004", "reference_id": "1630004", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1630004" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908778", "reference_id": "908778", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908778" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17000" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f2ar-xeec-1bfs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47131?format=api", "vulnerability_id": "VCID-f9kb-fa42-cfbx", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://blackberry.com/btsc/KB27244", "reference_id": "", "reference_type": "", "scores": [], "url": "http://blackberry.com/btsc/KB27244" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00003.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00003.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00005.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html" }, { "reference_url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html" }, { "reference_url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057763.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057763.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057840.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057840.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055240.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055240.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055683.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055683.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0192.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0192.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0192", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92789", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92744", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.9275", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92756", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92754", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92763", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92768", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92773", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92772", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92783", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92788", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92794", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.09355", "scoring_system": "epss", "scoring_elements": "0.92795", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0192" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0192", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0192" }, { "reference_url": "http://secunia.com/advisories/43585", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43585" }, { "reference_url": "http://secunia.com/advisories/43593", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43593" }, { "reference_url": "http://secunia.com/advisories/43664", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43664" }, { "reference_url": "http://secunia.com/advisories/43934", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43934" }, { "reference_url": "http://secunia.com/advisories/44117", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/44117" }, { "reference_url": "http://secunia.com/advisories/44135", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/44135" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.587820", "reference_id": "", "reference_type": "", "scores": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.587820" }, { "reference_url": "http://support.apple.com/kb/HT4554", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4554" }, { "reference_url": "http://support.apple.com/kb/HT4564", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4564" }, { "reference_url": "http://support.apple.com/kb/HT4565", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4565" }, { "reference_url": "http://support.apple.com/kb/HT4566", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4566" }, { "reference_url": "http://support.apple.com/kb/HT4581", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4581" }, { "reference_url": "http://support.apple.com/kb/HT4999", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4999" }, { "reference_url": "http://support.apple.com/kb/HT5001", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT5001" }, { "reference_url": "http://www.debian.org/security/2011/dsa-2210", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2011/dsa-2210" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:043", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:043" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2011-0318.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-0318.html" }, { "reference_url": "http://www.securityfocus.com/bid/46658", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/46658" }, { "reference_url": "http://www.securitytracker.com/id?1025153", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id?1025153" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0551", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0551" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0599", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0599" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0621", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0621" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0845", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0845" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0905", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0905" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0930", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0930" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0960", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0960" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=678635", "reference_id": "678635", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=678635" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:5.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:5.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.4.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.3.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.3.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0192", "reference_id": "CVE-2011-0192", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0192" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0318", "reference_id": "RHSA-2011:0318", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0318" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2011-0192" ], "risk_score": 4.2, "exploitability": "0.5", "weighted_severity": "8.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f9kb-fa42-cfbx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61021?format=api", "vulnerability_id": "VCID-fc93-fu34-37cx", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9453.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9453.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.6167", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61833", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.6184", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61844", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61827", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61822", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61744", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61792", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61808", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61828", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61816", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61796", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397723", "reference_id": "1397723", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397723" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9453" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fc93-fu34-37cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84705?format=api", "vulnerability_id": "VCID-g2kq-ch6c-nubm", "summary": "libtiff: Stack-based buffer overflow in _TIFFVGetField", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10095.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10095.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10095", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68218", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68368", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68311", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68355", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68363", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68239", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68258", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68234", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68284", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.683", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68325", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68313", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.6828", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.6832", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00561", "scoring_system": "epss", "scoring_elements": "0.68331", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10095" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410063", "reference_id": "1410063", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410063" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850316", "reference_id": "850316", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850316" }, { "reference_url": "https://security.archlinux.org/ASA-201707-17", "reference_id": "ASA-201707-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-17" }, { "reference_url": "https://security.archlinux.org/ASA-201707-18", "reference_id": "ASA-201707-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-18" }, { "reference_url": "https://security.archlinux.org/AVG-5", "reference_id": "AVG-5", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-5" }, { "reference_url": "https://security.archlinux.org/AVG-87", "reference_id": "AVG-87", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-87" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10095" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g2kq-ch6c-nubm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63625?format=api", "vulnerability_id": "VCID-g55a-2qfb-kkev", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9936.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9936.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9936", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.89982", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.89967", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05227", "scoring_system": "epss", "scoring_elements": "0.89984", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.05865", "scoring_system": "epss", "scoring_elements": "0.9058", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05865", "scoring_system": "epss", "scoring_elements": "0.90563", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.9071", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.90721", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.90727", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.90736", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.90737", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.90685", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.90691", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06042", "scoring_system": "epss", "scoring_elements": "0.90701", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9936" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469728", "reference_id": "1469728", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1469728" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866113", "reference_id": "866113", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866113" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2706", "reference_id": "CVE-2017-9936", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2706" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42300.txt", "reference_id": "CVE-2017-9936", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42300.txt" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-9936" ], "risk_score": 6.0, "exploitability": "2.0", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g55a-2qfb-kkev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60987?format=api", "vulnerability_id": "VCID-gg7k-u39a-kqbw", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00064.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00064.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00075.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00075.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3186.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3186.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73546", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.7351", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73504", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73537", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73549", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.7341", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73418", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73442", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73413", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73451", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73464", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73488", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73468", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.7346", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00766", "scoring_system": "epss", "scoring_elements": "0.73502", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3186" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319503", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319503" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3186" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securitytracker.com/id/1035442", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1035442" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319666", "reference_id": "1319666", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319666" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819972", "reference_id": "819972", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819972" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3186", "reference_id": "CVE-2016-3186", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3186" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3186" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gg7k-u39a-kqbw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13267?format=api", "vulnerability_id": "VCID-gmhp-4yx2-gfbv", "summary": "Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f8d0f9aa.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0909.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0909.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42396", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42254", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42405", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42341", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42337", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42467", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42497", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42435", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42486", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42495", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42518", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42481", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42451", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42501", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42476", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/393", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/393" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/310" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064146", "reference_id": "2064146", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064146" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0909", "reference_id": "CVE-2022-0909", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0909" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0909.json", "reference_id": "CVE-2022-0909.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0909.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0909" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gmhp-4yx2-gfbv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60980?format=api", "vulnerability_id": "VCID-gp1w-v49g-j3aw", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43179", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43078", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43298", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43287", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43223", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43157", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43158", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43235", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43264", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43201", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43253", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43265", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43286", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43238", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2015/12/24/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2015/12/24/2" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2015/12/24/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2015/12/24/4" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/bid/79728", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/79728" }, { "reference_url": "http://www.securitytracker.com/id/1035508", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1035508" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2939-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2939-1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294444", "reference_id": "1294444", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294444" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968", "reference_id": "808968", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8665", "reference_id": "CVE-2015-8665", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8665" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8665" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gp1w-v49g-j3aw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58076?format=api", "vulnerability_id": "VCID-gsfh-epay-ckgk", "summary": "security update", "references": [ { "reference_url": "http://openwall.com/lists/oss-security/2015/02/07/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2015/02/07/5" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78037", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78173", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78154", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.7816", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78045", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78074", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78057", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78083", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78087", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78113", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78096", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78093", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78128", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.78127", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01105", "scoring_system": "epss", "scoring_elements": "0.7812", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "http://www.debian.org/security/2015/dsa-3273", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2015/dsa-3273" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190703", "reference_id": "1190703", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1190703" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390", "reference_id": "777390", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9655", "reference_id": "CVE-2014-9655", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9655" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-9655" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gsfh-epay-ckgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73726?format=api", "vulnerability_id": "VCID-h4fa-k99r-zqdh", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17100.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17100.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53452", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5349", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53526", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53531", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53512", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53477", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.54789", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.54801", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.54785", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.54742", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.54792", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.54749", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.54772", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00334", "scoring_system": "epss", "scoring_elements": "0.5611", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631069", "reference_id": "1631069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631069" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909038", "reference_id": "909038", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17100" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h4fa-k99r-zqdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13221?format=api", "vulnerability_id": "VCID-h6gn-kv5x-bbd5", "summary": "Out-of-bounds Write\nA heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out-of-bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08006", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08054", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08185", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08139", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08082", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08105", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08148", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08097", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08157", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08179", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08172", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08153", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08136", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08041", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08026", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/380" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/382" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064411", "reference_id": "2064411", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064411" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0891", "reference_id": "CVE-2022-0891", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0891" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json", "reference_id": "CVE-2022-0891.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0891" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h6gn-kv5x-bbd5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60147?format=api", "vulnerability_id": "VCID-h7df-pn57-byhx", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7598.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.71937", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.71979", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.71944", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.71964", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.71941", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.71992", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.72015", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.71999", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00718", "scoring_system": "epss", "scoring_elements": "0.72483", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00718", "scoring_system": "epss", "scoring_elements": "0.72441", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00937", "scoring_system": "epss", "scoring_elements": "0.7628", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00937", "scoring_system": "epss", "scoring_elements": "0.76258", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00937", "scoring_system": "epss", "scoring_elements": "0.76267", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00937", "scoring_system": "epss", "scoring_elements": "0.76237", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00937", "scoring_system": "epss", "scoring_elements": "0.7622", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7598" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97499", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97499" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441254", "reference_id": "1441254", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441254" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7598", "reference_id": "CVE-2017-7598", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7598" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7598" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h7df-pn57-byhx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63806?format=api", "vulnerability_id": "VCID-hbvy-33n2-vqdz", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13726.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13726.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.7047", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70623", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70587", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70565", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70615", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70624", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70483", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70501", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70478", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70524", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.7054", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70563", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70548", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70534", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0064", "scoring_system": "epss", "scoring_elements": "0.70578", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488886", "reference_id": "1488886", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488886" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873880", "reference_id": "873880", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873880" }, { "reference_url": "https://security.archlinux.org/AVG-814", "reference_id": "AVG-814", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-814" }, { "reference_url": "https://security.archlinux.org/AVG-815", "reference_id": "AVG-815", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-815" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-13726" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hbvy-33n2-vqdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61009?format=api", "vulnerability_id": "VCID-hfrr-s8ge-z7hx", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5319.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5319.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75382", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75373", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75377", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75248", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75251", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75283", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75261", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75304", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75314", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75335", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75313", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75302", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75342", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75348", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75338", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5319" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344069", "reference_id": "1344069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344069" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046", "reference_id": "842046", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5319" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hfrr-s8ge-z7hx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34241?format=api", "vulnerability_id": "VCID-hw26-k89t-s3hp", "summary": "Multiple vulnerabilities have been found in libTIFF, allowing\n remote attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70637", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70652", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70783", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70759", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70803", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70819", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70842", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70826", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70811", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70856", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70862", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70841", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70894", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70903", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0065", "scoring_system": "epss", "scoring_elements": "0.70902", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4244" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=996468", "reference_id": "996468", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=996468" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4244" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hw26-k89t-s3hp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84229?format=api", "vulnerability_id": "VCID-hzcx-8haz-73fn", "summary": "libtiff: Memory leak in the TIFFReadDirEntryLong8Array function", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9815.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9815.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9815", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64329", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64479", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64469", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64482", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64383", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64412", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64373", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64422", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64437", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64449", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64409", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64444", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64455", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00467", "scoring_system": "epss", "scoring_elements": "0.64448", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9815" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1464449", "reference_id": "1464449", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1464449" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9815" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hzcx-8haz-73fn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50133?format=api", "vulnerability_id": "VCID-j7hm-kkvp-uqex", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2833", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2833" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00041.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00041.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7663.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7663.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.72022", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71976", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.7202", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.72028", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71903", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71911", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.7193", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71945", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71957", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71981", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71963", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71946", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71986", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.71991", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-7663" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/commit/802d3cbf3043be5dce5317e140ccb1c17a6a2d39", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/commit/802d3cbf3043be5dce5317e140ccb1c17a6a2d39" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00026.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00026.html" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1677528", "reference_id": "1677528", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1677528" }, { "reference_url": "https://security.archlinux.org/ASA-201911-13", "reference_id": "ASA-201911-13", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201911-13" }, { "reference_url": "https://security.archlinux.org/AVG-886", "reference_id": "AVG-886", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-886" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-7663", "reference_id": "CVE-2019-7663", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-7663" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://usn.ubuntu.com/3906-1/", "reference_id": "USN-3906-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-7663" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j7hm-kkvp-uqex" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78885?format=api", "vulnerability_id": "VCID-jdv4-3mf6-93hm", "summary": "libtiff: integer overflow in function TIFFReadRGBATileExt of the file", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26732", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26891", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26798", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.2679", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26847", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.2677", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00106", "scoring_system": "epss", "scoring_elements": "0.28622", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00106", "scoring_system": "epss", "scoring_elements": "0.28727", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00106", "scoring_system": "epss", "scoring_elements": "0.28688", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00106", "scoring_system": "epss", "scoring_elements": "0.28816", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29027", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29209", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29096", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29854", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737", "reference_id": "1024737", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2148918", "reference_id": "2148918", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2148918" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be", "reference_id": "227500897dfb07fb7d27f7aa570050e62617e3be", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3970", "reference_id": "CVE-2022-3970", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3970" }, { "reference_url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137", "reference_id": "detail?id=53137", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137" }, { "reference_url": "https://oss-fuzz.com/download?testcase_id=5738253143900160", "reference_id": "download?testcase_id=5738253143900160", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://oss-fuzz.com/download?testcase_id=5738253143900160" }, { "reference_url": "https://support.apple.com/kb/HT213841", "reference_id": "HT213841", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://support.apple.com/kb/HT213841" }, { "reference_url": "https://support.apple.com/kb/HT213843", "reference_id": "HT213843", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://support.apple.com/kb/HT213843" }, { "reference_url": "https://vuldb.com/?id.213549", "reference_id": "?id.213549", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://vuldb.com/?id.213549" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20221215-0009/", "reference_id": "ntap-20221215-0009", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20221215-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2883", "reference_id": "RHSA-2023:2883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2883" }, { "reference_url": "https://usn.ubuntu.com/5743-1/", "reference_id": "USN-5743-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5743-1/" }, { "reference_url": "https://usn.ubuntu.com/5743-2/", "reference_id": "USN-5743-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5743-2/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3970" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jdv4-3mf6-93hm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82715?format=api", "vulnerability_id": "VCID-jfme-eq8v-afht", "summary": "libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18768.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18768.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-18768", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09017", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09068", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08992", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09072", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09105", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09058", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08953", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08934", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09086", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09129", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09077", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09046", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09014", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-18768" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18768", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18768" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235458", "reference_id": "2235458", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235458" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2848", "reference_id": "show_bug.cgi?id=2848", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:35:49Z/" } ], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2848" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2020-18768" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jfme-eq8v-afht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84847?format=api", "vulnerability_id": "VCID-jr5v-vzng-nbcb", "summary": "libtiff: Out-of-bounds read in readContigTilesIntoBuffer()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9539.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9539.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9539", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61605", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61768", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61782", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61764", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61759", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6171", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6173", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61745", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61767", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61754", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61735", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61776", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9539" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9539", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9539" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397767", "reference_id": "1397767", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397767" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9539" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jr5v-vzng-nbcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47118?format=api", "vulnerability_id": "VCID-jsn6-ej2f-t7g1", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2212", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2212" }, { "reference_url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=874", "reference_id": "", "reference_type": "", "scores": [], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=874" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "http://osvdb.org/65676", "reference_id": "", "reference_type": "", "scores": [], "url": "http://osvdb.org/65676" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2067.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2067.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2067", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86158", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86048", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86059", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86075", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86094", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86105", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86119", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86117", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86113", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86131", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86136", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86129", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86149", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.028", "scoring_system": "epss", "scoring_elements": "0.86159", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2067" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2067", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2067" }, { "reference_url": "http://secunia.com/advisories/40241", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40241" }, { "reference_url": "http://secunia.com/advisories/40381", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40381" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424", "reference_id": "", "reference_type": "", "scores": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424" }, { "reference_url": "http://www.remotesensing.org/libtiff/v3.9.4.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.remotesensing.org/libtiff/v3.9.4.html" }, { "reference_url": "http://www.ubuntu.com/usn/USN-954-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-954-1" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1638", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1638" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=599576", "reference_id": "599576", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=599576" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2067", "reference_id": "CVE-2010-2067", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2067" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://usn.ubuntu.com/954-1/", "reference_id": "USN-954-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/954-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2067" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jsn6-ej2f-t7g1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16157?format=api", "vulnerability_id": "VCID-ju1t-bhyh-v7du", "summary": "Out-of-bounds Write\nprocessCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., \"WRITE of size 307203\") via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01158", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01091", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01093", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01099", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01104", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01105", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01089", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01082", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01084", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01077", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01087", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.01153", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0001", "scoring_system": "epss", "scoring_elements": "0.0116", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-48281" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/488", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/488" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5333", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5333" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653", "reference_id": "1029653", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163606", "reference_id": "2163606", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163606" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48281", "reference_id": "CVE-2022-48281", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48281" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230302-0004/", "reference_id": "ntap-20230302-0004", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230302-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3827", "reference_id": "RHSA-2023:3827", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3827" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-48281" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ju1t-bhyh-v7du" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34239?format=api", "vulnerability_id": "VCID-k2kr-482q-yucj", "summary": "Multiple vulnerabilities have been found in libTIFF, allowing\n remote attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95192", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95203", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95205", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95209", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95216", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.9522", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95225", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95226", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95229", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95237", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.9524", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95243", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.18385", "scoring_system": "epss", "scoring_elements": "0.95245", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303", "reference_id": "719303", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=995965", "reference_id": "995965", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=995965" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4231" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k2kr-482q-yucj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18138?format=api", "vulnerability_id": "VCID-k8kt-55y9-qyac", "summary": "NULL Pointer Dereference\nA null pointer dereference issue was discovered in Libtiff's tif_dir.c file. This flaw allows an attacker to pass a crafted TIFF image file to the tiffcp utility, which triggers runtime error, causing an undefined behavior, resulting in an application crash, eventually leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-2908.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-2908.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-2908", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0239", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02294", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02289", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02305", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02307", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02321", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02339", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02317", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02318", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02314", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02312", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02369", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02838", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0278", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-2908" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218830", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218830" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2908" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/479", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/479" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-2908", "reference_id": "CVE-2023-2908", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-2908" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2908", "reference_id": "CVE-2023-2908", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2908" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230731-0004/", "reference_id": "ntap-20230731-0004", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230731-0004/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2023-2908" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k8kt-55y9-qyac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47119?format=api", "vulnerability_id": "VCID-kaub-tt1e-mkfm", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2207", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2207" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2233.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2233.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2233", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.8502", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.8489", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84906", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84923", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84928", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84951", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84958", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84974", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84973", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84968", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84989", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84991", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.84988", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.85013", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02374", "scoring_system": "epss", "scoring_elements": "0.85021", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2233" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2233", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2233" }, { "reference_url": "http://secunia.com/advisories/40422", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40422" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://securitytracker.com/id?1024150", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securitytracker.com/id?1024150" }, { "reference_url": "http://www.remotesensing.org/libtiff/v3.9.4.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.remotesensing.org/libtiff/v3.9.4.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=607198", "reference_id": "607198", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=607198" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2233", "reference_id": "CVE-2010-2233", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2233" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2233" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kaub-tt1e-mkfm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13250?format=api", "vulnerability_id": "VCID-kpq7-5vsv-pucy", "summary": "NULL Pointer Dereference\nNull source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0908.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0908.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10543", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10569", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10703", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10653", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10651", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10687", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1075", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10609", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10682", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10737", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10752", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1072", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10696", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10558", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10575", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/383", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/383" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064145", "reference_id": "2064145", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064145" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0908", "reference_id": "CVE-2022-0908", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0908" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json", "reference_id": "CVE-2022-0908.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0908" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kpq7-5vsv-pucy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84431?format=api", "vulnerability_id": "VCID-m79s-k9bt-akfc", "summary": "libtiff: Memory leak in OJPEGReadHeaderInfoSecTablesQTable", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9404.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9404.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9404", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76452", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76594", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76576", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.7658", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76456", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76485", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76467", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76499", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76511", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76537", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76516", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.7651", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76551", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76555", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00962", "scoring_system": "epss", "scoring_elements": "0.76543", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9404" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9404", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9404" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458904", "reference_id": "1458904", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458904" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-9404" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m79s-k9bt-akfc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60991?format=api", "vulnerability_id": "VCID-m7mp-g37h-p3g9", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3622.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3622.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75933", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75913", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75922", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75792", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75796", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75828", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75806", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75839", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75851", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75874", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75855", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75849", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75886", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.7589", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00912", "scoring_system": "epss", "scoring_elements": "0.75875", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324823", "reference_id": "1324823", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324823" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820365", "reference_id": "820365", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820365" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3622" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m7mp-g37h-p3g9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60983?format=api", "vulnerability_id": "VCID-mb38-6e5v-fbah", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2522#c0", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2522#c0" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00058.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00058.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00064.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00064.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.83955", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84086", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.8405", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84076", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84082", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.8397", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.83985", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.83989", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84012", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84018", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84035", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84029", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84024", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84047", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02089", "scoring_system": "epss", "scoring_elements": "0.84049", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/3" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/7", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/7" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/bid/81730", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/81730" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2939-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2939-1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8781", "reference_id": "CVE-2015-8781", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8781" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8781" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mb38-6e5v-fbah" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12109?format=api", "vulnerability_id": "VCID-mhwh-tsst-cfaj", "summary": "Out-of-bounds Read\nLibTIFF has an out-of-bounds read in `_TIFFmemcpy` in `tif_unix.c` in certain situations involving a custom tag and `0x0200` as the second word of the `DE` field.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22844.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22844.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18198", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18352", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18253", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18238", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18569", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18623", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18331", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18414", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18466", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18418", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18367", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18312", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18325", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-22844" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/355" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/287", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/287" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2042603", "reference_id": "2042603", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2042603" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22844", "reference_id": "CVE-2022-22844", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22844" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5523-1/", "reference_id": "USN-5523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-1/" }, { "reference_url": "https://usn.ubuntu.com/5523-2/", "reference_id": "USN-5523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5523-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-22844" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mhwh-tsst-cfaj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61000?format=api", "vulnerability_id": "VCID-mqad-tkgf-r3ag", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3945.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3945.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36541", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36229", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36569", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36345", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36315", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36712", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36744", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36581", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36634", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36651", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.3666", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36625", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.366", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36645", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36628", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325093", "reference_id": "1325093", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325093" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-4/", "reference_id": "USN-3212-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3945" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mqad-tkgf-r3ag" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60978?format=api", "vulnerability_id": "VCID-mwb4-9fjj-qyfs", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7313.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7313.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7313", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32461", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3281", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3266", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32545", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32824", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32955", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3299", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32812", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3286", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32889", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3289", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32852", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32827", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32868", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32846", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7313" }, { "reference_url": "http://seclists.org/oss-sec/2015/q3/601", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/oss-sec/2015/q3/601" }, { "reference_url": "https://security-tracker.debian.org/tracker/CVE-2015-7313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security-tracker.debian.org/tracker/CVE-2015-7313" }, { "reference_url": "https://ubuntu.com/security/CVE-2015-7313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://ubuntu.com/security/CVE-2015-7313" }, { "reference_url": "http://www.securityfocus.com/bid/76843", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/76843" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1265998", "reference_id": "1265998", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1265998" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800124", "reference_id": "800124", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800124" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7313", "reference_id": "CVE-2015-7313", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7313" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-7313" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mwb4-9fjj-qyfs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87476?format=api", "vulnerability_id": "VCID-mxxa-mkme-pude", "summary": "libtiff: buffer overflow in JPEGDecode", "references": [ { "reference_url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00003.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00003.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011//Mar/msg00005.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0191.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0191.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0191", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95331", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95273", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95285", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.9529", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95295", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95302", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95305", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.9531", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95312", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.9532", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95324", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95326", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.95328", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.1892", "scoring_system": "epss", "scoring_elements": "0.9533", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-0191" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0191", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0191" }, { "reference_url": "http://secunia.com/advisories/43934", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43934" }, { "reference_url": "http://support.apple.com/kb/HT4554", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4554" }, { "reference_url": "http://support.apple.com/kb/HT4564", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4564" }, { "reference_url": "http://support.apple.com/kb/HT4565", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4565" }, { "reference_url": "http://support.apple.com/kb/HT4566", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4566" }, { "reference_url": "http://support.apple.com/kb/HT4581", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT4581" }, { "reference_url": "http://www.debian.org/security/2011/dsa-2210", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2011/dsa-2210" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:064", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:064" }, { "reference_url": "http://www.securityfocus.com/bid/46657", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/46657" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0845", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0845" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0859", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0859" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=678956", "reference_id": "678956", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=678956" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:10.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:10.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:4.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:4.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:5.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:5.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:5.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.4.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.4.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:6.0.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:6.0.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.3.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.3.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.3.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.4.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.4.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:7.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:7.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:8.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:8.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apple:itunes:9.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apple:itunes:9.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0191", "reference_id": "CVE-2011-0191", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0191" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2011-0191" ], "risk_score": 4.2, "exploitability": "0.5", "weighted_severity": "8.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mxxa-mkme-pude" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/67453?format=api", "vulnerability_id": "VCID-n3ta-dm1y-gya5", "summary": "libtiff: Libtiff Write-What-Where", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9900.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9900.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-9900", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1073", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10838", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10767", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10784", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10695", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10679", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10819", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10844", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10876", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10863", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10902", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10806", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11566", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12031", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-9900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9900" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392784", "reference_id": "2392784", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392784" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/704", "reference_id": "704", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/704" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/732", "reference_id": "732", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/732" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_id": "cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9", "reference_id": "cpe:/a:redhat:discovery:2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1", "reference_id": "cpe:/a:redhat:hummingbird:1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-9900", "reference_id": "CVE-2025-9900", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-9900" }, { "reference_url": "https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=readme-ov-file", "reference_id": "LibTiff-4.7.0-Write-What-Where?tab=readme-ov-file", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=readme-ov-file" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17651", "reference_id": "RHSA-2025:17651", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17651" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17675", "reference_id": "RHSA-2025:17675", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17675" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17710", "reference_id": "RHSA-2025:17710", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17710" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17738", "reference_id": "RHSA-2025:17738", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17738" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17739", "reference_id": "RHSA-2025:17739", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:17740", "reference_id": "RHSA-2025:17740", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:17740" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19113", "reference_id": "RHSA-2025:19113", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19156", "reference_id": "RHSA-2025:19156", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19156" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19276", "reference_id": "RHSA-2025:19276", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19276" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19906", "reference_id": "RHSA-2025:19906", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19906" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19947", "reference_id": "RHSA-2025:19947", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19947" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20956", "reference_id": "RHSA-2025:20956", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20956" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20998", "reference_id": "RHSA-2025:20998", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20998" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21060", "reference_id": "RHSA-2025:21060", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21061", "reference_id": "RHSA-2025:21061", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21061" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21062", "reference_id": "RHSA-2025:21062", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21407", "reference_id": "RHSA-2025:21407", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21407" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21506", "reference_id": "RHSA-2025:21506", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21507", "reference_id": "RHSA-2025:21507", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21508", "reference_id": "RHSA-2025:21508", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21994", "reference_id": "RHSA-2025:21994", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21994" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23078", "reference_id": "RHSA-2025:23078", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23079", "reference_id": "RHSA-2025:23079", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23080", "reference_id": "RHSA-2025:23080", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0001", "reference_id": "RHSA-2026:0001", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0001" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0076", "reference_id": "RHSA-2026:0076", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0076" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0077", "reference_id": "RHSA-2026:0077", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0078", "reference_id": "RHSA-2026:0078", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3461", "reference_id": "RHSA-2026:3461", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3462", "reference_id": "RHSA-2026:3462", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7504", "reference_id": "RHSA-2026:7504", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7504" }, { "reference_url": "https://usn.ubuntu.com/7783-1/", "reference_id": "USN-7783-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7783-1/" }, { "reference_url": "https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html", "reference_id": "v4.7.1.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-24T03:55:16Z/" } ], "url": "https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2025-9900" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n3ta-dm1y-gya5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61012?format=api", "vulnerability_id": "VCID-n5xz-y6bx-myfr", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5322.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5322.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39237", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39598", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39513", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39334", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39319", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39462", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39612", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39634", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39551", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39605", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.3962", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.3963", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39593", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39577", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39627", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3762", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3762" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/06/15/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/06/15/2" }, { "reference_url": "http://www.securityfocus.com/bid/91204", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/91204" }, { "reference_url": "http://www.securityfocus.com/bid/91205", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/91205" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346683", "reference_id": "1346683", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346683" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5322", "reference_id": "CVE-2016-5322", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5322" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5322" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n5xz-y6bx-myfr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60984?format=api", "vulnerability_id": "VCID-n614-w2nh-rqbe", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2522", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2522" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00058.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00058.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00064.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-02/msg00064.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.8139", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.8153", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81518", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81526", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81399", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81422", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81421", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81449", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81454", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81476", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81463", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81457", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81494", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81495", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01557", "scoring_system": "epss", "scoring_elements": "0.81496", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784" }, { "reference_url": "http://www.debian.org/security/2016/dsa-3467", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2016/dsa-3467" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/3" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/24/7", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2016/01/24/7" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/bid/81730", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/81730" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2939-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-2939-1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649", "reference_id": "1301649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301649" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8782", "reference_id": "CVE-2015-8782", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8782" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2939-1/", "reference_id": "USN-2939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-8782" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n614-w2nh-rqbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/17889?format=api", "vulnerability_id": "VCID-ndwc-beev-43ck", "summary": "Out-of-bounds Write\nloadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26965.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-26965.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26965", "reference_id": "", "reference_type": "", "scores": [ { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00733", "published_at": "2026-04-02T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00736", "published_at": "2026-04-07T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.0073", "published_at": "2026-04-04T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00735", "published_at": "2026-04-08T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00726", "published_at": "2026-04-09T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00796", "published_at": "2026-04-13T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.008", "published_at": "2026-04-18T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00795", "published_at": "2026-04-16T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00844", "published_at": "2026-04-29T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00801", "published_at": "2026-04-11T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00846", "published_at": "2026-04-24T12:55:00Z" }, { "value": "9e-05", "scoring_system": "epss", "scoring_elements": "0.00845", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-26965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26965" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/472", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/472" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215206", "reference_id": "2215206", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215206" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26965", "reference_id": "CVE-2023-26965", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26965" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230706-0009/", "reference_id": "ntap-20230706-0009", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230706-0009/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2023-26965" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ndwc-beev-43ck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61332?format=api", "vulnerability_id": "VCID-nhu6-nn6n-dbb9", "summary": "Multiple boundary checking vulnerabilities in libTIFF may allow for the\n remote execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2285.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2285.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2285", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94917", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94925", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94928", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94929", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94938", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94942", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94946", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94948", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94951", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94959", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94962", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.16784", "scoring_system": "epss", "scoring_elements": "0.94965", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-2285" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2285", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2285" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=507465", "reference_id": "507465", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=507465" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534137", "reference_id": "534137", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534137" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33049.txt", "reference_id": "CVE-2009-2285;OSVDB-55265", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33049.txt" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/10205.txt", "reference_id": "CVE-2009-2285;OSVDB-55265", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/10205.txt" }, { "reference_url": "https://www.securityfocus.com/bid/35451/info", "reference_id": "CVE-2009-2285;OSVDB-55265", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/35451/info" }, { "reference_url": "https://security.gentoo.org/glsa/200908-03", "reference_id": "GLSA-200908-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200908-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1159", "reference_id": "RHSA-2009:1159", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1159" }, { "reference_url": "https://usn.ubuntu.com/797-1/", "reference_id": "USN-797-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/797-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2009-2285" ], "risk_score": 0.4, "exploitability": "2.0", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nhu6-nn6n-dbb9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50131?format=api", "vulnerability_id": "VCID-nnvs-e9na-p7fu", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17546.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17546.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.58929", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59035", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59071", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.5903", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59048", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59004", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59026", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.58992", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59044", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.5905", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59069", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59051", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59032", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59067", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17546" }, { "reference_url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16443", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16443" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/OSGeo/gdal/commit/21674033ee246f698887604c7af7ba1962a40ddf", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/OSGeo/gdal/commit/21674033ee246f698887604c7af7ba1962a40ddf" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/commit/4bb584a35f87af42d6cf09d15e9ce8909a839145", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/commit/4bb584a35f87af42d6cf09d15e9ce8909a839145" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00020.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5ZW7E3IEW7LT2BPJP7D3RN6OUOE3MX/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5ZW7E3IEW7LT2BPJP7D3RN6OUOE3MX/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M3S4WNIMZ7XSLY2LD5FPRPZMGNUBVKOG/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M3S4WNIMZ7XSLY2LD5FPRPZMGNUBVKOG/" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/32", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/32" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20241220-0007/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20241220-0007/" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4608" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1765705", "reference_id": "1765705", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1765705" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:osgeo:gdal:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:osgeo:gdal:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:osgeo:gdal:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17546", "reference_id": "CVE-2019-17546", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17546" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3902", "reference_id": "RHSA-2020:3902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3902" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4634", "reference_id": "RHSA-2020:4634", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4634" }, { "reference_url": "https://usn.ubuntu.com/4158-1/", "reference_id": "USN-4158-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4158-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-17546" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nnvs-e9na-p7fu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60979?format=api", "vulnerability_id": "VCID-nyjs-ay8u-13gx", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-01/msg00078.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-01/msg00078.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-01/msg00081.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-01/msg00081.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-01/msg00100.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2016-01/msg00100.html" }, { "reference_url": "http://packetstormsecurity.com/files/135078/libtiff-4.0.6-Invalid-Write.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://packetstormsecurity.com/files/135078/libtiff-4.0.6-Invalid-Write.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1546.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2016-1547.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7554.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7554.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7554", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.8155", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81693", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81652", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81656", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.8168", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81689", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81562", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81584", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81582", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81609", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81614", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81635", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81622", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7554" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7554", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7554" }, { "reference_url": "http://seclists.org/fulldisclosure/2015/Dec/119", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/fulldisclosure/2015/Dec/119" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2015/12/26/7", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2015/12/26/7" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/537205/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/537205/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/bid/79699", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/79699" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294417", "reference_id": "1294417", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1294417" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809066", "reference_id": "809066", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809066" }, { "reference_url": "https://security.archlinux.org/ASA-201707-17", "reference_id": "ASA-201707-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-17" }, { "reference_url": "https://security.archlinux.org/ASA-201707-18", "reference_id": "ASA-201707-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201707-18" }, { "reference_url": "https://security.archlinux.org/AVG-5", "reference_id": "AVG-5", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-5" }, { "reference_url": "https://security.archlinux.org/AVG-87", "reference_id": "AVG-87", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-87" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7554", "reference_id": "CVE-2015-7554", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7554" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2015-7554" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nyjs-ay8u-13gx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83035?format=api", "vulnerability_id": "VCID-p3k1-dpdf-e3f3", "summary": "libtiff: tiff2bw tool failed memory allocation leads to crash", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18661.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18661.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18661", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00165", "scoring_system": "epss", "scoring_elements": "0.37142", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00165", "scoring_system": "epss", "scoring_elements": "0.37512", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00165", "scoring_system": "epss", "scoring_elements": "0.37558", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00165", "scoring_system": "epss", "scoring_elements": "0.3754", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00165", "scoring_system": "epss", "scoring_elements": "0.37476", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00165", "scoring_system": "epss", "scoring_elements": "0.37255", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00165", "scoring_system": "epss", "scoring_elements": "0.37234", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40226", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40238", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40249", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40211", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40078", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40227", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40251", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40174", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18661" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644448", "reference_id": "1644448", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644448" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912012", "reference_id": "912012", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912012" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-18661" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p3k1-dpdf-e3f3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60998?format=api", "vulnerability_id": "VCID-p9pe-czsr-9uhu", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3634.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3634.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3634", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71926", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71924", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71929", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71808", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71817", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71836", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71809", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71848", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71859", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71883", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71865", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.7189", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71895", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00693", "scoring_system": "epss", "scoring_elements": "0.71879", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3634" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3634", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3634" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326267", "reference_id": "1326267", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326267" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3634" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p9pe-czsr-9uhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61002?format=api", "vulnerability_id": "VCID-pczq-1huj-p7hf", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3991.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3991.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63271", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63405", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63377", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63395", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63408", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63331", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63358", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63324", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63375", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63393", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.6341", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63357", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63392", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.634", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326249", "reference_id": "1326249", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326249" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3991" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pczq-1huj-p7hf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58071?format=api", "vulnerability_id": "VCID-pf5w-eted-9kc9", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67455", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67589", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67577", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67587", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67491", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67512", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.6749", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67541", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67556", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67578", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67564", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67531", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67566", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67579", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67558", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185805", "reference_id": "1185805", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185805" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2014-8127" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pf5w-eted-9kc9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60143?format=api", "vulnerability_id": "VCID-phyw-fvec-1kan", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2659", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2659" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7594.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48582", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.4868", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48637", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48621", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48632", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63282", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63157", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63216", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63245", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63211", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63262", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.6328", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63297", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00441", "scoring_system": "epss", "scoring_elements": "0.63281", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97503", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97503" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441247", "reference_id": "1441247", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441247" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860001", "reference_id": "860001", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860001" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7594", "reference_id": "CVE-2017-7594", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7594" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7594" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-phyw-fvec-1kan" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19264?format=api", "vulnerability_id": "VCID-pkdx-ktz1-mbbg", "summary": "Missing Release of Memory after Effective Lifetime\nA memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3576.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3576.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05721", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05715", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05754", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05781", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05758", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.0575", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05745", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.057", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06393", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06185", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06335", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06354", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06381", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3576" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3576" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3576", "reference_id": "CVE-2023-3576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2023-3576" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3576", "reference_id": "CVE-2023-3576", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://usn.ubuntu.com/6512-1/", "reference_id": "USN-6512-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6512-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-3576" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pkdx-ktz1-mbbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16447?format=api", "vulnerability_id": "VCID-pnpt-r4ke-fufh", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0803.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0803.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07234", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07302", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07278", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07256", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07311", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07338", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07335", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07323", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07243", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07239", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07365", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07329", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/501", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/501" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170187", "reference_id": "2170187", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170187" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0803", "reference_id": "CVE-2023-0803", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0803" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0803.json", "reference_id": "CVE-2023-0803.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0803.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:54:51Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0803" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pnpt-r4ke-fufh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63849?format=api", "vulnerability_id": "VCID-prsj-fsuv-4ucy", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16335.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16335.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.8282", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.82836", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.82849", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.82845", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.82871", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.82878", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.82893", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01825", "scoring_system": "epss", "scoring_elements": "0.82888", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83405", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83335", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.8337", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83372", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83373", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83396", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01918", "scoring_system": "epss", "scoring_elements": "0.83403", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1624981", "reference_id": "1624981", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1624981" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907795", "reference_id": "907795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907795" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-16335" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-prsj-fsuv-4ucy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73727?format=api", "vulnerability_id": "VCID-pxhu-5vet-77f1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14973.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14973.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76507", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76512", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76541", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76523", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76566", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76592", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76571", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76564", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76606", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.7661", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76598", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.7663", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76636", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76649", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17000" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19210" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7663" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1745951", "reference_id": "1745951", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1745951" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934780", "reference_id": "934780", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934780" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1688", "reference_id": "RHSA-2020:1688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3902", "reference_id": "RHSA-2020:3902", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3902" }, { "reference_url": "https://usn.ubuntu.com/4158-1/", "reference_id": "USN-4158-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4158-1/" }, { "reference_url": "https://usn.ubuntu.com/5841-1/", "reference_id": "USN-5841-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5841-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2019-14973" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pxhu-5vet-77f1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81328?format=api", "vulnerability_id": "VCID-pz1t-b538-mbhy", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10094.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10094.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.73993", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74026", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.73997", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.7403", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74045", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74066", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74048", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74041", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.7408", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74089", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74115", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.008", "scoring_system": "epss", "scoring_elements": "0.74123", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410119", "reference_id": "1410119", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410119" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10094" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pz1t-b538-mbhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60144?format=api", "vulnerability_id": "VCID-qbff-swap-1uf6", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.6263", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.62754", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.62688", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.62721", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.62685", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.62737", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.62772", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.62761", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.63797", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.63747", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.63783", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.63793", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.63781", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.6381", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.63807", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7595" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-divide-by-zero-in-jpegsetupencode-tiff_jpeg-c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-divide-by-zero-in-jpegsetupencode-tiff_jpeg-c" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97501", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97501" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441248", "reference_id": "1441248", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441248" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860003", "reference_id": "860003", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860003" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7595", "reference_id": "CVE-2017-7595", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7595" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7595" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qbff-swap-1uf6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63842?format=api", "vulnerability_id": "VCID-qez8-xv6h-e3hx", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11613.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11613.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67829", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67981", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67922", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67967", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67976", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67853", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67872", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67903", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67917", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.6794", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67927", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67891", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67929", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00548", "scoring_system": "epss", "scoring_elements": "0.67941", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1475530", "reference_id": "1475530", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1475530" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869823", "reference_id": "869823", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869823" }, { "reference_url": "https://security.archlinux.org/ASA-201811-17", "reference_id": "ASA-201811-17", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-17" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-790", "reference_id": "AVG-790", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-790" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-11613" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qez8-xv6h-e3hx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55571?format=api", "vulnerability_id": "VCID-qj6b-fkj1-9yaw", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4243", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95244", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95257", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95259", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95264", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95272", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95274", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95279", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.9528", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95282", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.9529", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95295", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95297", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.95298", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.18712", "scoring_system": "epss", "scoring_elements": "0.953", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4243" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917", "reference_id": "742917", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=996052", "reference_id": "996052", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=996052" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4243" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qj6b-fkj1-9yaw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12866?format=api", "vulnerability_id": "VCID-qsrb-hf2u-tudp", "summary": "NULL Pointer Dereference\nNull source pointer passed as an argument to memcpy() function within `TIFFReadDirectory()` in `tif_dirread.c` in libtiff versions from to could lead to Denial of Service via a crafted TIFF file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0562.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0562.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09639", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09596", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.0958", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09473", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09477", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09625", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09672", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09497", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09571", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09618", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09626", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17853", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17906", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17693", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/gitlab-org/build/omnibus-mirror/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/build/omnibus-mirror/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/362" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054495", "reference_id": "2054495", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2054495" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0562", "reference_id": "CVE-2022-0562", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0562" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0562.json", "reference_id": "CVE-2022-0562.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0562.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0562" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qsrb-hf2u-tudp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47120?format=api", "vulnerability_id": "VCID-qtke-83xy-v7g7", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010", "reference_id": "", "reference_type": "", "scores": [], "url": "http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010" }, { "reference_url": "http://marc.info/?l=oss-security&m=127736307002102&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127736307002102&w=2" }, { "reference_url": "http://marc.info/?l=oss-security&m=127781315415896&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127781315415896&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2443.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2443.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2443", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85876", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85753", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85765", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85784", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85789", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85808", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85819", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85834", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.8583", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85826", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85845", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.8585", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85844", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85867", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02674", "scoring_system": "epss", "scoring_elements": "0.85875", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2443" }, { "reference_url": "https://bugs.launchpad.net/ubuntu/lucid/+source/tiff/+bug/589145", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/ubuntu/lucid/+source/tiff/+bug/589145" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2443", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2443" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://www.remotesensing.org/libtiff/v3.9.3.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.remotesensing.org/libtiff/v3.9.3.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0204", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0204" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=608010", "reference_id": "608010", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=608010" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2443", "reference_id": "CVE-2010-2443", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2443" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2443" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qtke-83xy-v7g7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60149?format=api", "vulnerability_id": "VCID-qy8p-meqk-8yej", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7600.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57633", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57713", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57718", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.5774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57768", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.5777", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57786", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.57764", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0037", "scoring_system": "epss", "scoring_elements": "0.58874", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0037", "scoring_system": "epss", "scoring_elements": "0.58879", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0037", "scoring_system": "epss", "scoring_elements": "0.58856", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0037", "scoring_system": "epss", "scoring_elements": "0.58855", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0037", "scoring_system": "epss", "scoring_elements": "0.58841", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0037", "scoring_system": "epss", "scoring_elements": "0.5884", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7600" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441260", "reference_id": "1441260", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441260" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7600", "reference_id": "CVE-2017-7600", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7600" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7600" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qy8p-meqk-8yej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47134?format=api", "vulnerability_id": "VCID-qza9-kt1g-j7h7", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2088.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2088.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86454", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86465", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86483", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86502", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86512", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86527", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86524", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86519", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86534", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86539", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86532", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86551", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86559", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02978", "scoring_system": "epss", "scoring_elements": "0.86558", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2088" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2088", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2088" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140", "reference_id": "678140", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678140" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=832864", "reference_id": "832864", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=832864" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1054", "reference_id": "RHSA-2012:1054", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1054" }, { "reference_url": "https://usn.ubuntu.com/1498-1/", "reference_id": "USN-1498-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1498-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-2088" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qza9-kt1g-j7h7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63843?format=api", "vulnerability_id": "VCID-r4k1-psbb-53gd", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5784.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5784.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.58765", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.58768", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.58801", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.58805", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.58783", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00368", "scoring_system": "epss", "scoring_elements": "0.58751", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.59827", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.59848", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.59862", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.59883", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.59867", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.5973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.59803", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00387", "scoring_system": "epss", "scoring_elements": "0.59798", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537740", "reference_id": "1537740", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537740" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890441", "reference_id": "890441", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890441" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-5784" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r4k1-psbb-53gd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63847?format=api", "vulnerability_id": "VCID-r8kc-zrjf-5ycv", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17101.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17101.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67635", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67621", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67632", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67537", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67557", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67536", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67587", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67601", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67623", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67609", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67577", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67611", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.67602", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00568", "scoring_system": "epss", "scoring_elements": "0.68455", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631078", "reference_id": "1631078", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1631078" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909037", "reference_id": "909037", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" }, { "reference_url": "https://usn.ubuntu.com/3906-2/", "reference_id": "USN-3906-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3906-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-17101" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r8kc-zrjf-5ycv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34235?format=api", "vulnerability_id": "VCID-rcqs-8say-7bb9", "summary": "Multiple vulnerabilities have been found in libTIFF, allowing\n remote attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-01/msg00076.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2012-1590.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2012-1590.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4447.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4447.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78895", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78771", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78779", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.7881", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78793", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78818", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78825", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78848", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78831", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78822", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.7885", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78847", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78844", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78872", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01189", "scoring_system": "epss", "scoring_elements": "0.78879", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4447" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4447", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4447" }, { "reference_url": "http://secunia.com/advisories/49938", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/49938" }, { "reference_url": "http://secunia.com/advisories/51049", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/51049" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2561", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2012/dsa-2561" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2012/09/25/14", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2012/09/25/14" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2012/09/25/9", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2012/09/25/9" }, { "reference_url": "http://www.remotesensing.org/libtiff/v4.0.3.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.remotesensing.org/libtiff/v4.0.3.html" }, { "reference_url": "http://www.securityfocus.com/bid/55673", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/55673" }, { "reference_url": "http://www.ubuntu.com/usn/USN-1631-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-1631-1" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688944", "reference_id": "688944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688944" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=860198", "reference_id": "860198", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860198" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta5:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta5:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta5:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta6:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0:beta6:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0:beta6:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4447", "reference_id": "CVE-2012-4447", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4447" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1590", "reference_id": "RHSA-2012:1590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1590" }, { "reference_url": "https://usn.ubuntu.com/1631-1/", "reference_id": "USN-1631-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1631-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2012-4447" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rcqs-8say-7bb9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34240?format=api", "vulnerability_id": "VCID-rhxp-g6d5-9be9", "summary": "Multiple vulnerabilities have been found in libTIFF, allowing\n remote attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79901", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79908", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79928", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79916", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79945", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79954", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79974", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79957", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79949", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.79977", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.7998", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80008", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.80014", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01331", "scoring_system": "epss", "scoring_elements": "0.8003", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303", "reference_id": "719303", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=995975", "reference_id": "995975", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=995975" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/2205-1/", "reference_id": "USN-2205-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2205-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-4232" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rhxp-g6d5-9be9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79347?format=api", "vulnerability_id": "VCID-rmap-8g2y-abdc", "summary": "libtiff: out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3598.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11913", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11959", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11747", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1183", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11882", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11893", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11854", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11827", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12556", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12409", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12522", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12548", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12434", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.1243", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142738", "reference_id": "2142738", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142738" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/435", "reference_id": "435", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/435" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff", "reference_id": "cfbb883bf6ea7bedcb04177cc4e52d304522fdff", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3598", "reference_id": "CVE-2022-3598", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3598" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json", "reference_id": "CVE-2022-3598.json", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5705-1/", "reference_id": "USN-5705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5705-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3598" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rmap-8g2y-abdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63846?format=api", "vulnerability_id": "VCID-rn1a-sww4-bffd", "summary": "security update", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2795", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2795" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10963.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10963.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32782", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33068", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33044", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33085", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33062", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33024", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32876", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32858", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.3303", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33074", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.33106", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00385", "scoring_system": "epss", "scoring_elements": "0.59684", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00385", "scoring_system": "epss", "scoring_elements": "0.59586", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00385", "scoring_system": "epss", "scoring_elements": "0.59659", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00002.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4349" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1579058", "reference_id": "1579058", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1579058" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898348", "reference_id": "898348", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898348" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10963", "reference_id": "CVE-2018-10963", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-10963" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rn1a-sww4-bffd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81320?format=api", "vulnerability_id": "VCID-rqmj-ns2c-jbh4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9533.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9533.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.59945", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60076", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60115", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60072", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60088", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60023", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60047", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60017", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60067", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60081", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60102", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60087", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.6007", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60109", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397769", "reference_id": "1397769", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397769" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9533" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rqmj-ns2c-jbh4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60145?format=api", "vulnerability_id": "VCID-rspm-rpj5-8qfj", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58282", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58371", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58398", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.5843", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58434", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58412", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58374", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58385", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58368", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58388", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58362", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58414", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58421", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58438", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58417", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7596" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97506", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97506" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441250", "reference_id": "1441250", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441250" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7596", "reference_id": "CVE-2017-7596", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7596" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7596" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rspm-rpj5-8qfj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79861?format=api", "vulnerability_id": "VCID-ruhz-ty5e-nkgr", "summary": "libtiff: tiffcrop.c has uint32_t underflow which leads to out of bounds read and write in extractContigSamples8bits()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06827", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06831", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06851", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06652", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06696", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06679", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06729", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06762", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06763", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06755", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06749", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06669", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06826", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118869", "reference_id": "2118869", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118869" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2869", "reference_id": "CVE-2022-2869", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2869" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://usn.ubuntu.com/5604-1/", "reference_id": "USN-5604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5604-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2869" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ruhz-ty5e-nkgr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81323?format=api", "vulnerability_id": "VCID-s2xb-r3c7-7fc4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9537.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9537.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61605", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61768", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61764", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61759", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6171", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6173", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61745", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61767", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61754", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61735", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61776", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61782", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397760", "reference_id": "1397760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397760" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9537" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s2xb-r3c7-7fc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61011?format=api", "vulnerability_id": "VCID-s4k8-v3sj-23fw", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5321.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5321.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.4081", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.4061", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.408", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40707", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40694", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40894", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40849", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40898", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40904", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40886", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40867", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40909", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40879", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346695", "reference_id": "1346695", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346695" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5321" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s4k8-v3sj-23fw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61001?format=api", "vulnerability_id": "VCID-s7s4-ux2t-3yc5", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3990.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3990.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63405", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.6341", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63357", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63392", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.634", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63377", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63395", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63408", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63375", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00444", "scoring_system": "epss", "scoring_elements": "0.63393", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00464", "scoring_system": "epss", "scoring_elements": "0.64293", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00464", "scoring_system": "epss", "scoring_elements": "0.64322", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00464", "scoring_system": "epss", "scoring_elements": "0.64279", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00464", "scoring_system": "epss", "scoring_elements": "0.64236", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326246", "reference_id": "1326246", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326246" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836570", "reference_id": "836570", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836570" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3990" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s7s4-ux2t-3yc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47128?format=api", "vulnerability_id": "VCID-s82q-vnkh-d7av", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2210", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2210" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2631.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2631.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2631", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90126", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90055", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90058", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90069", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90075", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.9009", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90096", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90105", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90103", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90098", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90115", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90111", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05374", "scoring_system": "epss", "scoring_elements": "0.90127", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2631" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2631", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2631" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=611890", "reference_id": "611890", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=611890" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2631", "reference_id": "CVE-2010-2631", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2631" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34279.txt", "reference_id": "CVE-2010-2631;OSVDB-66090", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34279.txt" }, { "reference_url": "https://www.securityfocus.com/bid/41477/info", "reference_id": "CVE-2010-2631;OSVDB-66090", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/41477/info" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571284?format=api", "purl": "pkg:deb/debian/tiff@3.9.4-5%2Bsqueeze10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.9.4-5%252Bsqueeze10" } ], "aliases": [ "CVE-2010-2631" ], "risk_score": 7.8, "exploitability": "2.0", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s82q-vnkh-d7av" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79309?format=api", "vulnerability_id": "VCID-s95z-s4sd-cffs", "summary": "libtiff: division by zero issues in tiffcrop", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25652", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.2579", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25763", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25707", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25699", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25771", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25841", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25893", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25904", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25862", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25805", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25808", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27786", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27824", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/415", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/415" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/346" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494", "reference_id": "1014494", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222", "reference_id": "2103222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103222" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2056", "reference_id": "CVE-2022-2056", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2056" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2056.json", "reference_id": "CVE-2022-2056.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2056.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2056" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s95z-s4sd-cffs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47127?format=api", "vulnerability_id": "VCID-sb4b-p69e-w3cn", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2210", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2210" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2630.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2630.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2630", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88373", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88287", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88295", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.8831", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88314", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88333", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88339", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88349", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88341", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88354", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88351", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88367", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.03939", "scoring_system": "epss", "scoring_elements": "0.88371", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2630" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=554371", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=554371" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2630" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2552", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2012/dsa-2552" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=611886", "reference_id": "611886", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=611886" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2630", "reference_id": "CVE-2010-2630", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2630" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34278.txt", "reference_id": "CVE-2010-2630;OSVDB-66089", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/34278.txt" }, { "reference_url": "https://www.securityfocus.com/bid/41475/info", "reference_id": "CVE-2010-2630;OSVDB-66089", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/41475/info" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2010-2630" ], "risk_score": 7.8, "exploitability": "2.0", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sb4b-p69e-w3cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63845?format=api", "vulnerability_id": "VCID-sefx-74dq-pqe1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8905.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8905.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70706", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70612", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70657", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70666", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70645", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70697", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70707", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70557", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70602", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70618", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.7064", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70626", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00756", "scoring_system": "epss", "scoring_elements": "0.73218", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00756", "scoring_system": "epss", "scoring_elements": "0.73239", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00756", "scoring_system": "epss", "scoring_elements": "0.73208", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-8905" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1559704", "reference_id": "1559704", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1559704" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893806", "reference_id": "893806", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893806" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-8905" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sefx-74dq-pqe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56116?format=api", "vulnerability_id": "VCID-sevq-1vjx-jfc7", "summary": "Multiple buffer underflow vulnerabilities in libTIFF may allow for the\n remote execution of arbitrary code.", "references": [ { "reference_url": "http://bugs.gentoo.org/show_bug.cgi?id=234080", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugs.gentoo.org/show_bug.cgi?id=234080" }, { "reference_url": "http://lists.apple.com/archives/security-announce//2008/Nov/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce//2008/Nov/msg00001.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2008/Nov/msg00002.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2008/Nov/msg00002.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2327.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2327.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2327", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0137", "scoring_system": "epss", "scoring_elements": "0.80191", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0137", "scoring_system": "epss", "scoring_elements": "0.8018", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0137", "scoring_system": "epss", "scoring_elements": "0.80208", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0137", "scoring_system": "epss", "scoring_elements": "0.80216", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0137", "scoring_system": "epss", "scoring_elements": "0.80164", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0137", "scoring_system": "epss", "scoring_elements": "0.80171", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81217", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81239", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81247", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81253", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81201", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81188", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.8118", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81218", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01508", "scoring_system": "epss", "scoring_elements": "0.81219", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2327" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2327", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2327" }, { "reference_url": "http://secunia.com/advisories/31610", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31610" }, { "reference_url": "http://secunia.com/advisories/31623", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31623" }, { "reference_url": "http://secunia.com/advisories/31668", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31668" }, { "reference_url": "http://secunia.com/advisories/31670", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31670" }, { "reference_url": "http://secunia.com/advisories/31698", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31698" }, { "reference_url": "http://secunia.com/advisories/31838", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31838" }, { "reference_url": "http://secunia.com/advisories/31882", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31882" }, { "reference_url": "http://secunia.com/advisories/31982", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/31982" }, { "reference_url": "http://secunia.com/advisories/32706", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/32706" }, { "reference_url": "http://secunia.com/advisories/32756", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/32756" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-200809-07.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-200809-07.xml" }, { "reference_url": "http://security-tracker.debian.net/tracker/CVE-2008-2327", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security-tracker.debian.net/tracker/CVE-2008-2327" }, { "reference_url": "http://security-tracker.debian.net/tracker/DSA-1632-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security-tracker.debian.net/tracker/DSA-1632-1" }, { "reference_url": "http://security-tracker.debian.net/tracker/DTSA-160-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security-tracker.debian.net/tracker/DTSA-160-1" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11489" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5514", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5514" }, { "reference_url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-265030-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-265030-1" }, { "reference_url": "http://support.apple.com/kb/HT3276", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT3276" }, { "reference_url": "http://support.apple.com/kb/HT3298", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT3298" }, { "reference_url": "http://support.apple.com/kb/HT3318", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT3318" }, { "reference_url": "https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00102.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00102.html" }, { "reference_url": "https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00121.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00121.html" }, { "reference_url": "http://www.debian.org/security/2008/dsa-1632", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2008/dsa-1632" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:184", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:184" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2008-0847.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2008-0847.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2008-0848.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2008-0848.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2008-0863.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2008-0863.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/496033/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/496033/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/archive/1/497962/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/497962/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/bid/30832", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/30832" }, { "reference_url": "http://www.securitytracker.com/id?1020750", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id?1020750" }, { "reference_url": "http://www.ubuntu.com/usn/usn-639-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/usn-639-1" }, { "reference_url": "http://www.us-cert.gov/cas/techalerts/TA08-260A.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.us-cert.gov/cas/techalerts/TA08-260A.html" }, { "reference_url": "http://www.vmware.com/security/advisories/VMSA-2008-0017.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vmware.com/security/advisories/VMSA-2008-0017.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2008/2438", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2008/2438" }, { "reference_url": "http://www.vupen.com/english/advisories/2008/2584", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2008/2584" }, { "reference_url": "http://www.vupen.com/english/advisories/2008/2776", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2008/2776" }, { "reference_url": "http://www.vupen.com/english/advisories/2008/2971", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2008/2971" }, { "reference_url": "http://www.vupen.com/english/advisories/2008/3107", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2008/3107" }, { "reference_url": "http://www.vupen.com/english/advisories/2008/3232", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2008/3232" }, { "reference_url": "http://www.vupen.com/english/advisories/2009/2143", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2009/2143" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=458674", "reference_id": "458674", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=458674" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2008-2327", "reference_id": "CVE-2008-2327", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-2327" }, { "reference_url": "https://security.gentoo.org/glsa/200809-07", "reference_id": "GLSA-200809-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200809-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0847", "reference_id": "RHSA-2008:0847", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0847" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0848", "reference_id": "RHSA-2008:0848", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0848" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0863", "reference_id": "RHSA-2008:0863", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0863" }, { "reference_url": "https://usn.ubuntu.com/639-1/", "reference_id": "USN-639-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/639-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571283?format=api", "purl": "pkg:deb/debian/tiff@3.8.2-11.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2e7g-3p2y-dfcc" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5d2c-qx3t-97b9" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-5y1x-36cj-gbdk" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6fqg-cbea-97g2" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-85fe-fkve-auhp" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-88t4-hhtf-8fak" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-9563-bbjf-wbhu" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-9p5z-qwmf-kyb1" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ak8g-1scg-jygh" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-b7tf-9byk-mqa5" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-cyy9-qtzt-3kfm" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dhpw-sb99-2fhd" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-ehyj-jfjv-5ugt" }, { "vulnerability": "VCID-ep61-nfbb-bfgj" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-f9kb-fa42-cfbx" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-jsn6-ej2f-t7g1" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kaub-tt1e-mkfm" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-mxxa-mkme-pude" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nhu6-nn6n-dbb9" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qtke-83xy-v7g7" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-qza9-kt1g-j7h7" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rcqs-8say-7bb9" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s82q-vnkh-d7av" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sb4b-p69e-w3cn" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4n9-tbq5-f3a3" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-w1eb-sep4-mbdn" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zszt-dw66-13ev" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.8.2-11.5" } ], "aliases": [ "CVE-2008-2327" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sevq-1vjx-jfc7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81351?format=api", "vulnerability_id": "VCID-sj4y-jbfp-uua3", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10266.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10266.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68702", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.6886", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68799", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68847", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68854", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.6872", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68741", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68719", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.6877", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68789", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68812", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68798", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68768", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.6881", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00576", "scoring_system": "epss", "scoring_elements": "0.68821", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10266" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/vadz/libtiff/commit/438274f938e046d33cb0e1230b41da32ffe223e1", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/438274f938e046d33cb0e1230b41da32ffe223e1" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97115", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97115" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438472", "reference_id": "1438472", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438472" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10266", "reference_id": "CVE-2016-10266", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10266" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10266" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sj4y-jbfp-uua3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81324?format=api", "vulnerability_id": "VCID-spqg-q1z6-pyex", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9538.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9538.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61605", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61768", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61782", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61764", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61759", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6171", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6173", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61745", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61767", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61754", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61735", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61776", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397765", "reference_id": "1397765", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397765" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9538" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-spqg-q1z6-pyex" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79171?format=api", "vulnerability_id": "VCID-tddn-m5ke-euas", "summary": "libtiff: A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42252", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42339", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42336", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42465", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42495", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42433", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42484", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42493", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42516", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42479", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42449", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42499", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42474", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00203", "scoring_system": "epss", "scoring_elements": "0.42403", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/433", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/433" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112756", "reference_id": "2112756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112756" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34526", "reference_id": "CVE-2022-34526", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34526" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-34526" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tddn-m5ke-euas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79107?format=api", "vulnerability_id": "VCID-tfyj-y9q3-t3ar", "summary": "libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.0451", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04305", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04434", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.0445", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.0447", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04318", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04351", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04366", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04359", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04346", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04325", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04297", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0764", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07683", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/48d6ece8389b01129e7d357f0985c8f938ce3da3", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/48d6ece8389b01129e7d357f0985c8f938ce3da3" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/414", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/414" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670", "reference_id": "1024670", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134432", "reference_id": "2134432", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134432" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2953", "reference_id": "CVE-2022-2953", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2953" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2953.json", "reference_id": "CVE-2022-2953.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2953.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0302", "reference_id": "RHSA-2023:0302", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0302" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2953" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tfyj-y9q3-t3ar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16442?format=api", "vulnerability_id": "VCID-tg7w-mbkg-7uhj", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0798.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0798.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02005", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02015", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02012", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02013", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0203", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01999", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01995", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01973", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01975", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0206", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02044", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02039", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/492", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/492" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170157", "reference_id": "2170157", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170157" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0798", "reference_id": "CVE-2023-0798", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0798" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0798.json", "reference_id": "CVE-2023-0798.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0798.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0003/", "reference_id": "ntap-20230316-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:02:53Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0798" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tg7w-mbkg-7uhj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79632?format=api", "vulnerability_id": "VCID-tgf9-ax81-fub4", "summary": "libtiff: heap Buffer overflows in tiffcrop.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [ { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00647", "published_at": "2026-04-29T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00643", "published_at": "2026-04-24T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00646", "published_at": "2026-04-26T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.0062", "published_at": "2026-04-02T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00612", "published_at": "2026-04-04T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00614", "published_at": "2026-04-07T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00613", "published_at": "2026-04-08T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00607", "published_at": "2026-04-09T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00605", "published_at": "2026-04-11T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00602", "published_at": "2026-04-12T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00603", "published_at": "2026-04-18T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "7e-05", "scoring_system": "epss", "scoring_elements": "0.00645", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/381" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/386", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/386" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142734", "reference_id": "2142734", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142734" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3570", "reference_id": "CVE-2022-3570", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3570" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json", "reference_id": "CVE-2022-3570.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5705-1/", "reference_id": "USN-5705-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5705-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3570" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tgf9-ax81-fub4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/64120?format=api", "vulnerability_id": "VCID-ttb7-w41r-4kfn", "summary": "libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4775.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4775.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-4775", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09462", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10702", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11774", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1186", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23888", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23898", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23945", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24077", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23859", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23926", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23972", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23989", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24038", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26266", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-4775" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4775", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4775" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132632", "reference_id": "1132632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450768", "reference_id": "2450768", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450768" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1", "reference_id": "cpe:/a:redhat:hummingbird:1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:hummingbird:1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-4775", "reference_id": "CVE-2026-4775", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-4775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12265", "reference_id": "RHSA-2026:12265", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-24T15:07:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:12265" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12271", "reference_id": "RHSA-2026:12271", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12271" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1068108?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1059999?format=api", "purl": "pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1054005?format=api", "purl": "pkg:deb/debian/tiff@4.7.1-2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2" } ], "aliases": [ "CVE-2026-4775" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ttb7-w41r-4kfn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60996?format=api", "vulnerability_id": "VCID-u1mj-pxtw-7qet", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66461", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.6661", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66587", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66594", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66609", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.665", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66526", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66497", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66545", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66559", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66578", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66566", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.66534", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00513", "scoring_system": "epss", "scoring_elements": "0.6657", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3632" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325095", "reference_id": "1325095", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1325095" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3632" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u1mj-pxtw-7qet" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20633?format=api", "vulnerability_id": "VCID-ua38-ur2u-eues", "summary": "Out-of-bounds Write\nA segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52356.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52356.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52356", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00616", "scoring_system": "epss", "scoring_elements": "0.69868", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00717", "scoring_system": "epss", "scoring_elements": "0.72436", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72848", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72831", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72823", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72864", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72771", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72795", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72915", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72917", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.72824", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00737", "scoring_system": "epss", "scoring_elements": "0.7281", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00849", "scoring_system": "epss", "scoring_elements": "0.74932", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00849", "scoring_system": "epss", "scoring_elements": "0.74896", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52356" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251344", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52356" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/622", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/622" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/546", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/546" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061524", "reference_id": "1061524", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061524" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_id": "cpe:/a:redhat:ai_inference_server:3.2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.3::el9", "reference_id": "cpe:/a:redhat:ai_inference_server:3.3::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.3::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9", "reference_id": "cpe:/a:redhat:discovery:2::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-52356", "reference_id": "CVE-2023-52356", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-52356" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52356", "reference_id": "CVE-2023-52356", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:5079", "reference_id": "RHSA-2024:5079", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:5079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20801", "reference_id": "RHSA-2025:20801", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20801" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21994", "reference_id": "RHSA-2025:21994", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21994" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23078", "reference_id": "RHSA-2025:23078", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23079", "reference_id": "RHSA-2025:23079", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23080", "reference_id": "RHSA-2025:23080", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3461", "reference_id": "RHSA-2026:3461", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3462", "reference_id": "RHSA-2026:3462", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:3462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5958", "reference_id": "RHSA-2026:5958", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:5958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7081", "reference_id": "RHSA-2026:7081", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7081" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7304", "reference_id": "RHSA-2026:7304", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7335", "reference_id": "RHSA-2026:7335", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:7335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8746", "reference_id": "RHSA-2026:8746", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:8746" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8747", "reference_id": "RHSA-2026:8747", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:8747" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8748", "reference_id": "RHSA-2026:8748", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:8748" }, { "reference_url": "https://usn.ubuntu.com/6644-1/", "reference_id": "USN-6644-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6644-1/" }, { "reference_url": "https://usn.ubuntu.com/6644-2/", "reference_id": "USN-6644-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6644-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2023-52356" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ua38-ur2u-eues" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40060?format=api", "vulnerability_id": "VCID-ucr1-vp5p-jqck", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1355.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1355.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15516", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15406", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15447", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17111", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16989", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17079", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17135", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17064", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17002", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16937", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16938", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22054", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22674", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22517", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22509", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/400", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/400" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/323" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160", "reference_id": "1011160", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074415", "reference_id": "2074415", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074415" }, { "reference_url": "https://security.archlinux.org/AVG-2721", "reference_id": "AVG-2721", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2721" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-1355", "reference_id": "CVE-2022-1355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/security/cve/CVE-2022-1355" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1355", "reference_id": "CVE-2022-1355", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1355" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5619-1/", "reference_id": "USN-5619-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5619-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-1355" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ucr1-vp5p-jqck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47132?format=api", "vulnerability_id": "VCID-v4n9-tbq5-f3a3", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://blackberry.com/btsc/KB27244", "reference_id": "", "reference_type": "", "scores": [], "url": "http://blackberry.com/btsc/KB27244" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2300", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2300" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html" }, { "reference_url": "http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057763.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057763.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057840.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057840.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1167.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1167.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1167", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90278", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90211", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90213", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90226", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90231", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90246", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90253", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90262", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90261", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90255", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90271", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90272", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90268", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90282", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.05526", "scoring_system": "epss", "scoring_elements": "0.90281", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1167" }, { "reference_url": "http://secunia.com/advisories/43900", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43900" }, { "reference_url": "http://secunia.com/advisories/43934", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43934" }, { "reference_url": "http://secunia.com/advisories/43974", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/43974" }, { "reference_url": "http://secunia.com/advisories/44117", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/44117" }, { "reference_url": "http://secunia.com/advisories/44135", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/44135" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://securityreason.com/securityalert/8165", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securityreason.com/securityalert/8165" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66247", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66247" }, { "reference_url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.587820", "reference_id": "", "reference_type": "", "scores": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.587820" }, { "reference_url": "http://support.apple.com/kb/HT5130", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT5130" }, { "reference_url": "http://support.apple.com/kb/HT5281", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT5281" }, { "reference_url": "http://support.apple.com/kb/HT5503", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.apple.com/kb/HT5503" }, { "reference_url": "http://ubuntu.com/usn/usn-1102-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://ubuntu.com/usn/usn-1102-1" }, { "reference_url": "http://www.debian.org/security/2011/dsa-2210", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2011/dsa-2210" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:064", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:064" }, { "reference_url": "http://www.osvdb.org/71256", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.osvdb.org/71256" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2011-0392.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-0392.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/517101/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/517101/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/bid/46951", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/46951" }, { "reference_url": "http://www.securitytracker.com/id?1025257", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id?1025257" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0795", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0795" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0845", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0845" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0859", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0859" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0860", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0860" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0905", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0905" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0930", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0930" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0960", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/0960" }, { "reference_url": "http://www.zerodayinitiative.com/advisories/ZDI-11-107", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-107" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=619614", "reference_id": "619614", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=619614" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=684939", "reference_id": "684939", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=684939" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1167", "reference_id": "CVE-2011-1167", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1167" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0392", "reference_id": "RHSA-2011:0392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0392" }, { "reference_url": "https://usn.ubuntu.com/1102-1/", "reference_id": "USN-1102-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1102-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2011-1167" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v4n9-tbq5-f3a3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18361?format=api", "vulnerability_id": "VCID-v4rx-c1w4-pbb3", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nA flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3618.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3618.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3618", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.43835", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.44003", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.44026", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.43957", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.44008", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.4401", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.44025", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.43993", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.43977", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.44039", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.4403", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.43964", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.43916", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00215", "scoring_system": "epss", "scoring_elements": "0.4392", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3618" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215865", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3618", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3618" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/8a4f6b587be4fa7bb39fe17f5f9dec52182ab26e", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/commit/8a4f6b587be4fa7bb39fe17f5f9dec52182ab26e" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040945", "reference_id": "1040945", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040945" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3618", "reference_id": "CVE-2023-3618", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3618" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3618", "reference_id": "CVE-2023-3618", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3618" }, { "reference_url": "https://support.apple.com/kb/HT214036", "reference_id": "HT214036", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://support.apple.com/kb/HT214036" }, { "reference_url": "https://support.apple.com/kb/HT214037", "reference_id": "HT214037", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://support.apple.com/kb/HT214037" }, { "reference_url": "https://support.apple.com/kb/HT214038", "reference_id": "HT214038", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://support.apple.com/kb/HT214038" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230824-0012/", "reference_id": "ntap-20230824-0012", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230824-0012/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2289", "reference_id": "RHSA-2024:2289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2289" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2023-3618" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v4rx-c1w4-pbb3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60977?format=api", "vulnerability_id": "VCID-vn6c-kuq7-k3hv", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8130.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8130.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8130", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83896", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.84028", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.84018", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.84025", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83911", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83928", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.8393", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83954", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83961", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83976", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.8397", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83966", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.8399", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02075", "scoring_system": "epss", "scoring_elements": "0.83991", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8130" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185817", "reference_id": "1185817", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185817" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2014-8130" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vn6c-kuq7-k3hv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16657?format=api", "vulnerability_id": "VCID-vu6r-464p-4ue3", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01862", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01946", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01874", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01877", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01891", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01876", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01861", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01856", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01839", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01837", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01921", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01916", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01912", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/277", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/277" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2176220", "reference_id": "2176220", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2176220" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/", "reference_id": "2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/", "reference_id": "BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4645", "reference_id": "CVE-2022-4645", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4645" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json", "reference_id": "CVE-2022-4645.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230331-0001/", "reference_id": "ntap-20230331-0001", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230331-0001/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/", "reference_id": "OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3059", "reference_id": "RHSA-2024:3059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3059" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-4645" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vu6r-464p-4ue3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58075?format=api", "vulnerability_id": "VCID-vv32-13t8-1fht", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78622", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78629", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78659", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.7864", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78666", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78673", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78697", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78679", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.78672", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01171", "scoring_system": "epss", "scoring_elements": "0.787", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80128", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.8013", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80157", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80164", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01351", "scoring_system": "epss", "scoring_elements": "0.80178", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177893", "reference_id": "1177893", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177893" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987", "reference_id": "773987", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-9330" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vv32-13t8-1fht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83757?format=api", "vulnerability_id": "VCID-vxd8-dh75-fqah", "summary": "libtiff: Heap-based buffer overflow in PackBitsEncode function in tif_packbits.c", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2767", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2767" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17942.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17942.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17942", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61083", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61229", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61231", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61221", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61236", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.6116", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61188", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61154", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61202", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61217", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61237", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61224", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61206", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61245", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61251", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17942" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/102312", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102312" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1529524", "reference_id": "1529524", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1529524" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885579", "reference_id": "885579", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885579" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17942", "reference_id": "CVE-2017-17942", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17942" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-17942" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vxd8-dh75-fqah" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79886?format=api", "vulnerability_id": "VCID-vzr7-wz88-h7gx", "summary": "libtiff: Invalid crop_width and/or crop_length could cause an out-of-bounds read in reverseSamples16bits()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03495", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.0334", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03458", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03444", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03449", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03416", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03419", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03441", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03402", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03374", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03351", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03328", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07279", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07322", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118863", "reference_id": "2118863", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2118863" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2868", "reference_id": "CVE-2022-2868", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2868" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0095", "reference_id": "RHSA-2023:0095", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0095" }, { "reference_url": "https://usn.ubuntu.com/5604-1/", "reference_id": "USN-5604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5604-1/" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-2868" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vzr7-wz88-h7gx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47115?format=api", "vulnerability_id": "VCID-w1eb-sep4-mbdn", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=1999", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=1999" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058478.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058478.html" }, { "reference_url": "http://openwall.com/lists/oss-security/2011/04/12/10", "reference_id": "", "reference_type": "", "scores": [], "url": "http://openwall.com/lists/oss-security/2011/04/12/10" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5022.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5022.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-5022", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94929", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94876", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94886", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94889", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.9489", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.949", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94904", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94908", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94911", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94913", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.9492", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94923", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.16555", "scoring_system": "epss", "scoring_elements": "0.94928", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-5022" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5022", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5022" }, { "reference_url": "http://secunia.com/advisories/44271", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/44271" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://securitytracker.com/id?1025380", "reference_id": "", "reference_type": "", "scores": [], "url": "http://securitytracker.com/id?1025380" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66774", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66774" }, { "reference_url": "http://www.debian.org/security/2011/dsa-2256", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2011/dsa-2256" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:078", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:078" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2011-0452.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-0452.html" }, { "reference_url": "http://www.remotesensing.org/libtiff/v3.9.5.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.remotesensing.org/libtiff/v3.9.5.html" }, { "reference_url": "http://www.securityfocus.com/bid/47338", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/47338" }, { "reference_url": "http://www.ubuntu.com/usn/USN-1120-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/USN-1120-1" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/1014", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/1014" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/1082", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2011/1082" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624287", "reference_id": "624287", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624287" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=695885", "reference_id": "695885", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=695885" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2009-5022", "reference_id": "CVE-2009-5022", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-5022" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/22681.txt", "reference_id": "CVE-2009-5022;OSVDB-72260", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/22681.txt" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0452", "reference_id": "RHSA-2011:0452", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0452" }, { "reference_url": "https://usn.ubuntu.com/1120-1/", "reference_id": "USN-1120-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1120-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2009-5022" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w1eb-sep4-mbdn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61022?format=api", "vulnerability_id": "VCID-wes8-vrs4-gygk", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9532.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9532.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.68998", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69158", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69092", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69142", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.6915", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69015", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69035", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69016", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69066", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69085", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69108", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69094", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69064", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69103", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00585", "scoring_system": "epss", "scoring_elements": "0.69112", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397726", "reference_id": "1397726", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397726" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844057", "reference_id": "844057", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844057" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9532" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wes8-vrs4-gygk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63844?format=api", "vulnerability_id": "VCID-wk1z-n789-n7cg", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7456.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7456.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.7109", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.71011", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.70994", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.7104", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.71047", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.71082", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.71091", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.70946", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.70988", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.71004", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00656", "scoring_system": "epss", "scoring_elements": "0.71026", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.7687", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76901", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00994", "scoring_system": "epss", "scoring_elements": "0.76863", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1556708", "reference_id": "1556708", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1556708" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891288", "reference_id": "891288", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891288" }, { "reference_url": "https://security.archlinux.org/ASA-201811-18", "reference_id": "ASA-201811-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201811-18" }, { "reference_url": "https://security.archlinux.org/AVG-791", "reference_id": "AVG-791", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-791" }, { "reference_url": "https://security.archlinux.org/AVG-813", "reference_id": "AVG-813", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-813" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2051", "reference_id": "RHSA-2019:2051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2053", "reference_id": "RHSA-2019:2053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2053" }, { "reference_url": "https://usn.ubuntu.com/3864-1/", "reference_id": "USN-3864-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3864-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2018-7456" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wk1z-n789-n7cg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61018?format=api", "vulnerability_id": "VCID-wpd2-zcyv-s7g8", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9273.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9273.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77849", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77993", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77939", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77973", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.7798", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77856", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77884", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77866", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77894", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77898", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77925", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77909", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77947", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01087", "scoring_system": "epss", "scoring_elements": "0.77946", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395164", "reference_id": "1395164", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395164" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844013", "reference_id": "844013", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844013" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9273" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wpd2-zcyv-s7g8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63807?format=api", "vulnerability_id": "VCID-wuzx-t7h4-uqa8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13727.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13727.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70352", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70506", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70446", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70497", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70364", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70381", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.7036", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70406", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70421", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70445", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.7043", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70416", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70458", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00636", "scoring_system": "epss", "scoring_elements": "0.70466", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488887", "reference_id": "1488887", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1488887" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873879", "reference_id": "873879", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873879" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-13727" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wuzx-t7h4-uqa8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34237?format=api", "vulnerability_id": "VCID-wwvq-jsvj-rqgf", "summary": "Multiple vulnerabilities have been found in libTIFF, allowing\n remote attackers to execute arbitrary code or cause Denial of Service.", "references": [ { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104916.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104916.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105253.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105253.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105828.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105828.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00058.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00058.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00080.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-updates/2013-06/msg00080.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2014-0223.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2014-0223.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89204", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89116", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89124", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89139", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89142", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89159", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89165", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89175", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89171", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89168", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89181", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89178", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.89195", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.04531", "scoring_system": "epss", "scoring_elements": "0.892", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961" }, { "reference_url": "http://seclists.org/oss-sec/2013/q2/254", "reference_id": "", "reference_type": "", "scores": [], "url": "http://seclists.org/oss-sec/2013/q2/254" }, { "reference_url": "http://secunia.com/advisories/53237", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/53237" }, { "reference_url": "http://secunia.com/advisories/53765", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/53765" }, { "reference_url": "http://www.debian.org/security/2013/dsa-2698", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2013/dsa-2698" }, { "reference_url": "http://www.securityfocus.com/bid/59609", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/59609" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675", "reference_id": "706675", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=952158", "reference_id": "952158", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=952158" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta18:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta18:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta24:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta24:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta28:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta28:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta29:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta29:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta31:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta31:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta32:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta32:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta34:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta34:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta35:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta35:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta36:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta36:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.4:beta37:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.4:beta37:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.6:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.6:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.5.7:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.5.7:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:alpha:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:alpha:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.8.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:3.9.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:3.9.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:4.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:4.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:remotesensing:libtiff:4.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:remotesensing:libtiff:4.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1960", "reference_id": "CVE-2013-1960", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1960" }, { "reference_url": "https://security.gentoo.org/glsa/201402-21", "reference_id": "GLSA-201402-21", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201402-21" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0222", "reference_id": "RHSA-2014:0222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0222" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:0223", "reference_id": "RHSA-2014:0223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:0223" }, { "reference_url": "https://usn.ubuntu.com/1832-1/", "reference_id": "USN-1832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2013-1960" ], "risk_score": 4.2, "exploitability": "0.5", "weighted_severity": "8.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wwvq-jsvj-rqgf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16427?format=api", "vulnerability_id": "VCID-wza2-4rcj-hkcd", "summary": "Out-of-bounds Read\nLibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0797.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0797.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02005", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02067", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02015", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02012", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02013", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0203", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01999", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01995", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01973", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.01975", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0206", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02044", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02039", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/495", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/495" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170151", "reference_id": "2170151", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170151" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0797", "reference_id": "CVE-2023-0797", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0797" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0797.json", "reference_id": "CVE-2023-0797.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0797.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T19:03:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0797" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wza2-4rcj-hkcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50129?format=api", "vulnerability_id": "VCID-x7w1-k9zt-qkab", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17095.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17095.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88354", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.8844", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88424", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.8842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88419", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88436", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88362", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88376", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88381", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.884", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88406", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88417", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03989", "scoring_system": "epss", "scoring_elements": "0.88409", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" }, { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00027.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4349" }, { "reference_url": "https://www.exploit-db.com/exploits/43322/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.exploit-db.com/exploits/43322/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/11/30/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/11/30/3" }, { "reference_url": "http://www.securityfocus.com/bid/102124", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102124" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1524284", "reference_id": "1524284", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1524284" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883320", "reference_id": "883320", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883320" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2750", "reference_id": "CVE-2017-17095", "reference_type": "exploit", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2750" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43322.txt", "reference_id": "CVE-2017-17095", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43322.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17095", "reference_id": "CVE-2017-17095", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17095" }, { "reference_url": "https://security.gentoo.org/glsa/202003-25", "reference_id": "GLSA-202003-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6575", "reference_id": "RHSA-2023:6575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:4658", "reference_id": "RHSA-2025:4658", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:4658" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-17095" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x7w1-k9zt-qkab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61007?format=api", "vulnerability_id": "VCID-x91e-13q2-yked", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5317.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5317.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69865", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69852", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69861", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69708", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.6972", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69736", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69713", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69761", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69778", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.698", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69784", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.6977", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69811", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69821", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00611", "scoring_system": "epss", "scoring_elements": "0.69801", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346689", "reference_id": "1346689", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346689" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5317" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x91e-13q2-yked" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60151?format=api", "vulnerability_id": "VCID-x9hb-1bes-k3hy", "summary": "Multiple vulnerabilities have been found in LibTIFF, the worst of\n which could result in the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7602.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7602.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00399", "scoring_system": "epss", "scoring_elements": "0.60654", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00399", "scoring_system": "epss", "scoring_elements": "0.60671", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00399", "scoring_system": "epss", "scoring_elements": "0.60657", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00399", "scoring_system": "epss", "scoring_elements": "0.60643", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66653", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66618", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66545", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66584", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66611", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66582", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.6663", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66644", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66663", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00515", "scoring_system": "epss", "scoring_elements": "0.66651", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7602" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3844", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3844" }, { "reference_url": "http://www.securityfocus.com/bid/97500", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97500" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441263", "reference_id": "1441263", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441263" }, { "reference_url": "https://security.archlinux.org/ASA-201704-10", "reference_id": "ASA-201704-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201704-10" }, { "reference_url": "https://security.archlinux.org/AVG-237", "reference_id": "AVG-237", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-237" }, { "reference_url": "https://security.archlinux.org/AVG-817", "reference_id": "AVG-817", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-817" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7602", "reference_id": "CVE-2017-7602", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7602" }, { "reference_url": "https://security.gentoo.org/glsa/201709-27", "reference_id": "GLSA-201709-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201709-27" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2017-7602" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x9hb-1bes-k3hy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16425?format=api", "vulnerability_id": "VCID-x9xf-wuyn-6ffg", "summary": "Out-of-bounds Write\nLibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0802.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0802.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07234", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07302", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07278", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07256", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07311", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07338", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07335", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07323", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07243", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07239", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07365", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07329", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0795" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0796" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0797" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0798" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0799" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0804" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/33aee1275d9d1384791d2206776eb8152d397f00" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/500", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/500" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632", "reference_id": "1031632", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170178", "reference_id": "2170178", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170178" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0802", "reference_id": "CVE-2023-0802", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0802" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0802.json", "reference_id": "CVE-2023-0802.JSON", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0802.json" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5361", "reference_id": "dsa-5361", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5361" }, { "reference_url": "https://security.gentoo.org/glsa/202305-31", "reference_id": "GLSA-202305-31", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://security.gentoo.org/glsa/202305-31" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html", "reference_id": "msg00026.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00026.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230316-0002/", "reference_id": "ntap-20230316-0002", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-21T18:59:46Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230316-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3711", "reference_id": "RHSA-2023:3711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5353", "reference_id": "RHSA-2023:5353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5353" }, { "reference_url": "https://usn.ubuntu.com/5923-1/", "reference_id": "USN-5923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-0802" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x9xf-wuyn-6ffg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61003?format=api", "vulnerability_id": "VCID-xg5z-jss1-3ycp", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5102.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5102.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69614", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69602", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.6961", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69454", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69465", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69481", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69461", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69511", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69527", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69549", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69534", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.6952", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69559", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.69569", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00602", "scoring_system": "epss", "scoring_elements": "0.6955", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5102" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5102" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343407", "reference_id": "1343407", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343407" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5102" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xg5z-jss1-3ycp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81322?format=api", "vulnerability_id": "VCID-xg6v-katm-67et", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9536.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9536.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61605", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61768", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61782", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61764", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61759", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6171", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.6173", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61745", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61767", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61754", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61735", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00416", "scoring_system": "epss", "scoring_elements": "0.61776", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397758", "reference_id": "1397758", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397758" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" }, { "reference_url": "https://usn.ubuntu.com/3212-3/", "reference_id": "USN-3212-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-9536" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xg6v-katm-67et" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18053?format=api", "vulnerability_id": "VCID-xmwn-vxux-h7g3", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25435.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25435.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25435", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09504", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09455", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09491", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09417", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14245", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14299", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14206", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.1415", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.1404", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16323", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16211", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16169", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.1629", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16214", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25435" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25435", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25435" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/518", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-06T19:11:03Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/518" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216614", "reference_id": "2216614", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216614" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25435", "reference_id": "CVE-2023-25435", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25435" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2023-25435" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xmwn-vxux-h7g3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61004?format=api", "vulnerability_id": "VCID-xx3b-d12j-8qc4", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5314.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5314.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78126", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78106", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78113", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.77988", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.77996", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78025", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78008", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78034", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78038", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78065", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78048", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78045", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.7808", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78079", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.011", "scoring_system": "epss", "scoring_elements": "0.78073", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346697", "reference_id": "1346697", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346697" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700", "reference_id": "830700", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-5314" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xx3b-d12j-8qc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81330?format=api", "vulnerability_id": "VCID-y7zh-9g8h-z3ce", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10272.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10272.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66403", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66556", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66515", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.6654", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66555", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66442", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66468", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66488", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66501", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66521", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66509", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66478", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66513", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66531", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10272" }, { "reference_url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a" }, { "reference_url": "http://www.securityfocus.com/bid/97197", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97197" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438458", "reference_id": "1438458", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1438458" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10272", "reference_id": "CVE-2016-10272", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-10272" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10272" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y7zh-9g8h-z3ce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85865?format=api", "vulnerability_id": "VCID-y96w-zrrr-dqav", "summary": "libtiff: Integer overflow in tools/bmp2tiff.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8870.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8870.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8870", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72895", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72903", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72923", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72898", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72936", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.7295", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72975", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72957", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72951", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72992", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73002", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.72995", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73035", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73045", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00741", "scoring_system": "epss", "scoring_elements": "0.73042", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8870" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8870", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8870" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402778", "reference_id": "1402778", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1402778" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0225", "reference_id": "RHSA-2017:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0225" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2015-8870" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y96w-zrrr-dqav" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/60990?format=api", "vulnerability_id": "VCID-ytpu-tcxj-guex", "summary": "Multiple vulnerabilities have been found in libTIFF, the worst of\n which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3621.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3621.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3621", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71656", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71647", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71651", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.7153", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71536", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71554", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71527", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71567", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71578", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71601", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71585", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71612", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71616", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0068", "scoring_system": "epss", "scoring_elements": "0.71597", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3621" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3621", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3621" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324822", "reference_id": "1324822", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1324822" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820364", "reference_id": "820364", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820364" }, { "reference_url": "https://security.archlinux.org/ASA-201611-26", "reference_id": "ASA-201611-26", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-26" }, { "reference_url": "https://security.archlinux.org/ASA-201611-27", "reference_id": "ASA-201611-27", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-27" }, { "reference_url": "https://security.archlinux.org/AVG-85", "reference_id": "AVG-85", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-85" }, { "reference_url": "https://security.archlinux.org/AVG-86", "reference_id": "AVG-86", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-86" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-3621" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ytpu-tcxj-guex" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63805?format=api", "vulnerability_id": "VCID-ywac-4ng8-6uhc", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12944.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12944.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72854", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.73002", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72995", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.73005", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72861", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72881", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72856", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72894", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72908", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72933", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72916", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.7291", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72951", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72961", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0074", "scoring_system": "epss", "scoring_elements": "0.72954", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1487202", "reference_id": "1487202", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1487202" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872607", "reference_id": "872607", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872607" }, { "reference_url": "https://usn.ubuntu.com/3602-1/", "reference_id": "USN-3602-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3602-1/" }, { "reference_url": "https://usn.ubuntu.com/3606-1/", "reference_id": "USN-3606-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3606-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" } ], "aliases": [ "CVE-2017-12944" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ywac-4ng8-6uhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58074?format=api", "vulnerability_id": "VCID-z17v-aeta-1qb7", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80798", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80808", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80829", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80825", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80853", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80861", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80877", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80863", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80855", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80893", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80895", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80896", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80917", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80924", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01462", "scoring_system": "epss", "scoring_elements": "0.80936", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185815", "reference_id": "1185815", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185815" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185", "reference_id": "776185", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185" }, { "reference_url": "https://security.gentoo.org/glsa/201701-16", "reference_id": "GLSA-201701-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1546", "reference_id": "RHSA-2016:1546", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1546" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2016:1547", "reference_id": "RHSA-2016:1547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2016:1547" }, { "reference_url": "https://usn.ubuntu.com/2553-1/", "reference_id": "USN-2553-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2553-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035540?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3" } ], "aliases": [ "CVE-2014-8129" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z17v-aeta-1qb7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18135?format=api", "vulnerability_id": "VCID-z1vf-mhw2-ducs", "summary": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\nlibtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop cause heap-buffer-overflow and SEGV.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25433.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25433.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25433", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06633", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06643", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07226", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.0728", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07307", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07302", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07202", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07247", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07289", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07278", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07209", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07204", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0761", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07641", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-25433" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25433", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25433" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/520", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/520" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/467", "reference_id": "", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/467" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218744", "reference_id": "2218744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218744" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25433", "reference_id": "CVE-2023-25433", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25433" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html", "reference_id": "msg00034.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:5079", "reference_id": "RHSA-2024:5079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:5079" }, { "reference_url": "https://usn.ubuntu.com/6229-1/", "reference_id": "USN-6229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6229-1/" }, { "reference_url": "https://usn.ubuntu.com/6290-1/", "reference_id": "USN-6290-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6290-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994557?format=api", "purl": "pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3" } ], "aliases": [ "CVE-2023-25433" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z1vf-mhw2-ducs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83490?format=api", "vulnerability_id": "VCID-z4fp-77gf-gydw", "summary": "libtiff: memory leak in bmp2tiff tool", "references": [ { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2790", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2790" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10801.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10801.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10801", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60737", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60868", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.6081", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60839", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60803", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60852", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60889", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60876", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61074", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.6106", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61053", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61027", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61048", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61059", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00405", "scoring_system": "epss", "scoring_elements": "0.61068", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10801" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10801", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10801" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577392", "reference_id": "1577392", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1577392" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.8.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10801", "reference_id": "CVE-2018-10801", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10801" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2018-10801" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z4fp-77gf-gydw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81327?format=api", "vulnerability_id": "VCID-zd2w-uhnu-x3an", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10093.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10093.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73039", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73048", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73069", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73044", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73081", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73093", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73118", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73098", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73091", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73134", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73144", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73136", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73172", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73185", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00747", "scoring_system": "epss", "scoring_elements": "0.73184", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410116", "reference_id": "1410116", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410116" }, { "reference_url": "https://usn.ubuntu.com/3212-1/", "reference_id": "USN-3212-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3212-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035541?format=api", "purl": "pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036987?format=api", "purl": "pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5" } ], "aliases": [ "CVE-2016-10093" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zd2w-uhnu-x3an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13224?format=api", "vulnerability_id": "VCID-zedn-437q-47b2", "summary": "Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 5e180045.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0865.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0865.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10258", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10292", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10413", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10359", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.1035", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10378", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10446", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.1033", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10403", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10466", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10496", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10463", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10441", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.1031", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10282", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/385", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/issues/385" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/306", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.com/libtiff/libtiff/-/merge_requests/306" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064406", "reference_id": "2064406", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064406" }, { "reference_url": "https://security.archlinux.org/ASA-202204-6", "reference_id": "ASA-202204-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202204-6" }, { "reference_url": "https://security.archlinux.org/AVG-2658", "reference_id": "AVG-2658", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2658" }, { "reference_url": "https://security.archlinux.org/AVG-2659", "reference_id": "AVG-2659", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2659" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0865", "reference_id": "CVE-2022-0865", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0865" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0865.json", "reference_id": "CVE-2022-0865.JSON", "reference_type": "", "scores": [], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0865.json" }, { "reference_url": "https://security.gentoo.org/glsa/202210-10", "reference_id": "GLSA-202210-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7585", "reference_id": "RHSA-2022:7585", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7585" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8194", "reference_id": "RHSA-2022:8194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8194" }, { "reference_url": "https://usn.ubuntu.com/5421-1/", "reference_id": "USN-5421-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5421-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037853?format=api", "purl": "pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-0865" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zedn-437q-47b2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/47124?format=api", "vulnerability_id": "VCID-zszt-dw66-13ev", "summary": "Multiple vulnerabilities in libTIFF could result in execution of\n arbitrary code or Denial of Service.", "references": [ { "reference_url": "http://blackberry.com/btsc/KB27244", "reference_id": "", "reference_type": "", "scores": [], "url": "http://blackberry.com/btsc/KB27244" }, { "reference_url": "http://bugzilla.maptools.org/show_bug.cgi?id=2208", "reference_id": "", "reference_type": "", "scores": [], "url": "http://bugzilla.maptools.org/show_bug.cgi?id=2208" }, { "reference_url": "http://marc.info/?l=oss-security&m=127731610612908&w=2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://marc.info/?l=oss-security&m=127731610612908&w=2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2595.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81847", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81858", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81881", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81877", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81903", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81909", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01634", "scoring_system": "epss", "scoring_elements": "0.81929", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82632", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82566", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82638", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.8256", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82596", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.826", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01751", "scoring_system": "epss", "scoring_elements": "0.82621", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2595" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=583081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2595" }, { "reference_url": "http://secunia.com/advisories/40422", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40422" }, { "reference_url": "http://secunia.com/advisories/40527", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/40527" }, { "reference_url": "http://secunia.com/advisories/50726", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/50726" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-201209-02.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-201209-02.xml" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2552", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2012/dsa-2552" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0519.html" }, { "reference_url": "http://www.vupen.com/english/advisories/2010/1761", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2010/1761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=610684", "reference_id": "610684", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=610684" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libtiff:libtiff:3.9.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2595", "reference_id": "CVE-2010-2595", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2595" }, { "reference_url": "https://security.gentoo.org/glsa/201209-02", "reference_id": "GLSA-201209-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201209-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0519", "reference_id": "RHSA-2010:0519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0519" }, { "reference_url": "https://usn.ubuntu.com/1085-1/", "reference_id": "USN-1085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1085-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/571286?format=api", "purl": "pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15g8-3ryu-h3ga" }, { "vulnerability": "VCID-1asc-7axg-6ben" }, { "vulnerability": "VCID-1cjh-zx12-2fh2" }, { "vulnerability": "VCID-1csm-m3wq-tbck" }, { "vulnerability": "VCID-1dhy-s5x3-fuf7" }, { "vulnerability": "VCID-1ecn-xrs5-hubq" }, { "vulnerability": "VCID-1j12-qxks-wkdh" }, { "vulnerability": "VCID-1mh3-q3y5-qyg1" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-1pbp-smgt-duey" }, { "vulnerability": "VCID-1rsr-q1uf-ekav" }, { "vulnerability": "VCID-255p-pm39-1bb3" }, { "vulnerability": "VCID-25fx-7kmb-fqhm" }, { "vulnerability": "VCID-28t9-d8gb-b3h9" }, { "vulnerability": "VCID-2a5b-7k5n-73fx" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-2e1s-2q8y-h3er" }, { "vulnerability": "VCID-2hvh-x482-5qhw" }, { "vulnerability": "VCID-2qg1-nxq2-jkht" }, { "vulnerability": "VCID-2u8w-cy3j-9fen" }, { "vulnerability": "VCID-36t6-pnx8-xugd" }, { "vulnerability": "VCID-39ee-trms-qkes" }, { "vulnerability": "VCID-3rd2-fv4n-tybf" }, { "vulnerability": "VCID-3wfj-nc9t-xfgp" }, { "vulnerability": "VCID-43cd-stdq-pbc9" }, { "vulnerability": "VCID-44ee-ueju-ykae" }, { "vulnerability": "VCID-44zu-mtmq-57cm" }, { "vulnerability": "VCID-45tr-e5rv-6uch" }, { "vulnerability": "VCID-45zg-bst2-byff" }, { "vulnerability": "VCID-48tr-y71p-7fbb" }, { "vulnerability": "VCID-4e6e-nkkd-j3ef" }, { "vulnerability": "VCID-4egk-vvjq-dyhw" }, { "vulnerability": "VCID-4mq7-s2p6-yufr" }, { "vulnerability": "VCID-4n8m-6c1e-f7ba" }, { "vulnerability": "VCID-4pys-mah6-hfh6" }, { "vulnerability": "VCID-4srx-3gbk-eqd3" }, { "vulnerability": "VCID-5h29-wne5-gbd7" }, { "vulnerability": "VCID-5mak-1mkk-wkdg" }, { "vulnerability": "VCID-5t8u-vcjy-t7hx" }, { "vulnerability": "VCID-5uu1-xncw-vkej" }, { "vulnerability": "VCID-6cry-skqu-zke9" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-6kck-g3z6-cuge" }, { "vulnerability": "VCID-6ngq-ungb-sycm" }, { "vulnerability": "VCID-6q62-2xsj-6kgp" }, { "vulnerability": "VCID-6sb9-u71x-j7f5" }, { "vulnerability": "VCID-6sx9-1yfw-63cg" }, { "vulnerability": "VCID-6wzx-7a3m-ufhm" }, { "vulnerability": "VCID-72yx-48n1-jbfs" }, { "vulnerability": "VCID-76g4-kacn-7yg7" }, { "vulnerability": "VCID-7a2s-a1kp-wke1" }, { "vulnerability": "VCID-7dzd-xznd-jug7" }, { "vulnerability": "VCID-7fes-a88m-q3ft" }, { "vulnerability": "VCID-7jpu-rtje-mke4" }, { "vulnerability": "VCID-7xr6-sn1k-t7cw" }, { "vulnerability": "VCID-81ew-t25a-f7gq" }, { "vulnerability": "VCID-83hb-ksrb-yyb5" }, { "vulnerability": "VCID-8691-q4h3-eyaf" }, { "vulnerability": "VCID-8f48-6u7s-xyht" }, { "vulnerability": "VCID-8kgw-n4zx-uqa8" }, { "vulnerability": "VCID-98zm-dbqt-g3eg" }, { "vulnerability": "VCID-9bfu-xyxk-xuek" }, { "vulnerability": "VCID-9gqh-2uat-93c7" }, { "vulnerability": "VCID-9h6w-8dqt-23fr" }, { "vulnerability": "VCID-9hyt-7jsq-vqc5" }, { "vulnerability": "VCID-a1hq-fqkv-u7d9" }, { "vulnerability": "VCID-a3ze-kdhc-muht" }, { "vulnerability": "VCID-aa6m-3c5d-hfat" }, { "vulnerability": "VCID-ajwe-qvmr-aqgs" }, { "vulnerability": "VCID-ap6w-9c6j-akdp" }, { "vulnerability": "VCID-as9s-4ugc-ukgy" }, { "vulnerability": "VCID-at8c-pabb-z3d5" }, { "vulnerability": "VCID-b33v-b6h4-cqfe" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-b6cu-zk51-hkdv" }, { "vulnerability": "VCID-b7gk-w11p-2uaq" }, { "vulnerability": "VCID-baha-p74p-rff4" }, { "vulnerability": "VCID-bap5-5e3b-8qea" }, { "vulnerability": "VCID-bf8s-peku-2uht" }, { "vulnerability": "VCID-bnbg-7q6h-8uhs" }, { "vulnerability": "VCID-cbhv-yme7-buby" }, { "vulnerability": "VCID-ceb4-e5mz-4fbp" }, { "vulnerability": "VCID-cm5h-b1g9-tkg9" }, { "vulnerability": "VCID-cswr-9c4x-xyg8" }, { "vulnerability": "VCID-cw7d-us77-2fhv" }, { "vulnerability": "VCID-cwen-8yyj-x3aw" }, { "vulnerability": "VCID-czxa-qesr-gfh5" }, { "vulnerability": "VCID-d3ym-a4bv-ybaz" }, { "vulnerability": "VCID-dh5n-3ubj-1uhu" }, { "vulnerability": "VCID-dkbt-62ad-bqdq" }, { "vulnerability": "VCID-dxtf-qzfj-k3aq" }, { "vulnerability": "VCID-e6c2-ajs1-abdz" }, { "vulnerability": "VCID-f1g1-tv8m-pudk" }, { "vulnerability": "VCID-f2ar-xeec-1bfs" }, { "vulnerability": "VCID-fc93-fu34-37cx" }, { "vulnerability": "VCID-g2kq-ch6c-nubm" }, { "vulnerability": "VCID-g55a-2qfb-kkev" }, { "vulnerability": "VCID-gg7k-u39a-kqbw" }, { "vulnerability": "VCID-gmhp-4yx2-gfbv" }, { "vulnerability": "VCID-gp1w-v49g-j3aw" }, { "vulnerability": "VCID-gsfh-epay-ckgk" }, { "vulnerability": "VCID-h4fa-k99r-zqdh" }, { "vulnerability": "VCID-h6gn-kv5x-bbd5" }, { "vulnerability": "VCID-h7df-pn57-byhx" }, { "vulnerability": "VCID-hbvy-33n2-vqdz" }, { "vulnerability": "VCID-hfrr-s8ge-z7hx" }, { "vulnerability": "VCID-hw26-k89t-s3hp" }, { "vulnerability": "VCID-hzcx-8haz-73fn" }, { "vulnerability": "VCID-j7hm-kkvp-uqex" }, { "vulnerability": "VCID-jdv4-3mf6-93hm" }, { "vulnerability": "VCID-jfme-eq8v-afht" }, { "vulnerability": "VCID-jr5v-vzng-nbcb" }, { "vulnerability": "VCID-ju1t-bhyh-v7du" }, { "vulnerability": "VCID-k2kr-482q-yucj" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-kpq7-5vsv-pucy" }, { "vulnerability": "VCID-m79s-k9bt-akfc" }, { "vulnerability": "VCID-m7mp-g37h-p3g9" }, { "vulnerability": "VCID-mb38-6e5v-fbah" }, { "vulnerability": "VCID-mhwh-tsst-cfaj" }, { "vulnerability": "VCID-mqad-tkgf-r3ag" }, { "vulnerability": "VCID-mwb4-9fjj-qyfs" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-n5xz-y6bx-myfr" }, { "vulnerability": "VCID-n614-w2nh-rqbe" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-nnvs-e9na-p7fu" }, { "vulnerability": "VCID-nyjs-ay8u-13gx" }, { "vulnerability": "VCID-p3k1-dpdf-e3f3" }, { "vulnerability": "VCID-p9pe-czsr-9uhu" }, { "vulnerability": "VCID-pczq-1huj-p7hf" }, { "vulnerability": "VCID-pf5w-eted-9kc9" }, { "vulnerability": "VCID-phyw-fvec-1kan" }, { "vulnerability": "VCID-pkdx-ktz1-mbbg" }, { "vulnerability": "VCID-pnpt-r4ke-fufh" }, { "vulnerability": "VCID-prsj-fsuv-4ucy" }, { "vulnerability": "VCID-pxhu-5vet-77f1" }, { "vulnerability": "VCID-pz1t-b538-mbhy" }, { "vulnerability": "VCID-qbff-swap-1uf6" }, { "vulnerability": "VCID-qez8-xv6h-e3hx" }, { "vulnerability": "VCID-qj6b-fkj1-9yaw" }, { "vulnerability": "VCID-qsrb-hf2u-tudp" }, { "vulnerability": "VCID-qy8p-meqk-8yej" }, { "vulnerability": "VCID-r4k1-psbb-53gd" }, { "vulnerability": "VCID-r8kc-zrjf-5ycv" }, { "vulnerability": "VCID-rhxp-g6d5-9be9" }, { "vulnerability": "VCID-rmap-8g2y-abdc" }, { "vulnerability": "VCID-rn1a-sww4-bffd" }, { "vulnerability": "VCID-rqmj-ns2c-jbh4" }, { "vulnerability": "VCID-rspm-rpj5-8qfj" }, { "vulnerability": "VCID-ruhz-ty5e-nkgr" }, { "vulnerability": "VCID-s2xb-r3c7-7fc4" }, { "vulnerability": "VCID-s4k8-v3sj-23fw" }, { "vulnerability": "VCID-s7s4-ux2t-3yc5" }, { "vulnerability": "VCID-s95z-s4sd-cffs" }, { "vulnerability": "VCID-sefx-74dq-pqe1" }, { "vulnerability": "VCID-sj4y-jbfp-uua3" }, { "vulnerability": "VCID-spqg-q1z6-pyex" }, { "vulnerability": "VCID-tddn-m5ke-euas" }, { "vulnerability": "VCID-tfyj-y9q3-t3ar" }, { "vulnerability": "VCID-tg7w-mbkg-7uhj" }, { "vulnerability": "VCID-tgf9-ax81-fub4" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-u1mj-pxtw-7qet" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ucr1-vp5p-jqck" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vn6c-kuq7-k3hv" }, { "vulnerability": "VCID-vu6r-464p-4ue3" }, { "vulnerability": "VCID-vv32-13t8-1fht" }, { "vulnerability": "VCID-vxd8-dh75-fqah" }, { "vulnerability": "VCID-vzr7-wz88-h7gx" }, { "vulnerability": "VCID-wes8-vrs4-gygk" }, { "vulnerability": "VCID-wk1z-n789-n7cg" }, { "vulnerability": "VCID-wpd2-zcyv-s7g8" }, { "vulnerability": "VCID-wuzx-t7h4-uqa8" }, { "vulnerability": "VCID-wwvq-jsvj-rqgf" }, { "vulnerability": "VCID-wza2-4rcj-hkcd" }, { "vulnerability": "VCID-x7w1-k9zt-qkab" }, { "vulnerability": "VCID-x91e-13q2-yked" }, { "vulnerability": "VCID-x9hb-1bes-k3hy" }, { "vulnerability": "VCID-x9xf-wuyn-6ffg" }, { "vulnerability": "VCID-xg5z-jss1-3ycp" }, { "vulnerability": "VCID-xg6v-katm-67et" }, { "vulnerability": "VCID-xmwn-vxux-h7g3" }, { "vulnerability": "VCID-xx3b-d12j-8qc4" }, { "vulnerability": "VCID-y7zh-9g8h-z3ce" }, { "vulnerability": "VCID-y96w-zrrr-dqav" }, { "vulnerability": "VCID-ytpu-tcxj-guex" }, { "vulnerability": "VCID-ywac-4ng8-6uhc" }, { "vulnerability": "VCID-z17v-aeta-1qb7" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" }, { "vulnerability": "VCID-z4fp-77gf-gydw" }, { "vulnerability": "VCID-zd2w-uhnu-x3an" }, { "vulnerability": "VCID-zedn-437q-47b2" }, { "vulnerability": "VCID-zwbu-yezc-4yck" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5" } ], "aliases": [ "CVE-2010-2595" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zszt-dw66-13ev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79574?format=api", "vulnerability_id": "VCID-zwbu-yezc-4yck", "summary": "libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07556", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07606", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0762", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07633", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07614", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08043", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08007", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07992", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0815", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08107", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08071", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08413", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0836", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555", "reference_id": "1022555", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142736", "reference_id": "2142736", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142736" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047", "reference_id": "236b7191f04c60d09ee836ae13b50f812c841047", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047" }, { "reference_url": "https://gitlab.com/libtiff/libtiff/-/issues/413", "reference_id": "413", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://gitlab.com/libtiff/libtiff/-/issues/413" }, { "reference_url": "https://security.archlinux.org/AVG-2842", "reference_id": "AVG-2842", "reference_type": "", "scores": [ { "value": "Unknown", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2842" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3597", "reference_id": "CVE-2022-3597", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3597" }, { "reference_url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json", "reference_id": "CVE-2022-3597.json", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "reference_id": "msg00018.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230110-0001/", "reference_id": "ntap-20230110-0001", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230110-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2340", "reference_id": "RHSA-2023:2340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2340" }, { "reference_url": "https://usn.ubuntu.com/5714-1/", "reference_id": "USN-5714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5714-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994556?format=api", "purl": "pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hfc-b4qr-jqgk" }, { "vulnerability": "VCID-1nme-2pjx-q7hp" }, { "vulnerability": "VCID-2ds7-xq64-9ue2" }, { "vulnerability": "VCID-38sj-85gt-sfhe" }, { "vulnerability": "VCID-4mhv-7vrm-v7hv" }, { "vulnerability": "VCID-6dt6-ppka-b3ct" }, { "vulnerability": "VCID-7zdy-fxq2-p7gf" }, { "vulnerability": "VCID-9grz-pkwb-3kc5" }, { "vulnerability": "VCID-a8jf-xmj8-cuh6" }, { "vulnerability": "VCID-b4hb-cxzy-suck" }, { "vulnerability": "VCID-d8kh-h6vs-gqd4" }, { "vulnerability": "VCID-dg96-zmw1-8kcp" }, { "vulnerability": "VCID-h9ap-xxmw-j7dr" }, { "vulnerability": "VCID-k8kt-55y9-qyac" }, { "vulnerability": "VCID-n3ta-dm1y-gya5" }, { "vulnerability": "VCID-ndc5-qn5u-3qbq" }, { "vulnerability": "VCID-ndwc-beev-43ck" }, { "vulnerability": "VCID-r186-xqyn-ffey" }, { "vulnerability": "VCID-rp7t-x7gz-9udg" }, { "vulnerability": "VCID-sqxq-hg7v-d7gv" }, { "vulnerability": "VCID-ttb7-w41r-4kfn" }, { "vulnerability": "VCID-ua38-ur2u-eues" }, { "vulnerability": "VCID-ukgj-45m7-6uba" }, { "vulnerability": "VCID-v4rx-c1w4-pbb3" }, { "vulnerability": "VCID-vju4-pghv-47bx" }, { "vulnerability": "VCID-vrtj-45t6-cqec" }, { "vulnerability": "VCID-yfxw-tmnn-byc6" }, { "vulnerability": "VCID-z1vf-mhw2-ducs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5" } ], "aliases": [ "CVE-2022-3597" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zwbu-yezc-4yck" } ], "fixing_vulnerabilities": [], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.8.2-7%252Betch3" }