Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/583057?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "type": "deb", "namespace": "debian", "name": "ffmpeg", "version": "4:0.5+svn20090706-3", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "4:0.5.2-6", "latest_non_vulnerable_version": "7:8.1-3", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30969?format=api", "vulnerability_id": "VCID-7788-qe78-g7bk", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4631", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87711", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87722", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87735", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87737", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87758", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87765", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87776", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.8777", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87768", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87783", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.87782", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03598", "scoring_system": "epss", "scoring_elements": "0.8778", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4631" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4631", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4631" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4631" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7788-qe78-g7bk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30973?format=api", "vulnerability_id": "VCID-f9v9-2pd5-57g8", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4635", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92907", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92915", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92919", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92918", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92926", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92931", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92935", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92934", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92945", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92947", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.09713", "scoring_system": "epss", "scoring_elements": "0.92953", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4635" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4635", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4635" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" }, { "reference_url": "https://usn.ubuntu.com/931-1/", "reference_id": "USN-931-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/931-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4635" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f9v9-2pd5-57g8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30974?format=api", "vulnerability_id": "VCID-frwv-4zeq-sbh2", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4636", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.8691", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.8692", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86939", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86932", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86953", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.8696", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86974", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86969", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86963", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86978", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.86982", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0318", "scoring_system": "epss", "scoring_elements": "0.8698", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4636" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4636", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4636" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4636" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-frwv-4zeq-sbh2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30971?format=api", "vulnerability_id": "VCID-j4bt-nrmt-j7fa", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4633", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91267", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91271", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91281", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91288", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.913", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91306", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91313", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91316", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91315", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.9134", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06787", "scoring_system": "epss", "scoring_elements": "0.91339", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4633" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4633", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4633" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" }, { "reference_url": "https://usn.ubuntu.com/931-1/", "reference_id": "USN-931-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/931-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4633" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j4bt-nrmt-j7fa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30975?format=api", "vulnerability_id": "VCID-mz5h-6t71-4qc4", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4637", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96922", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.9693", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96934", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96938", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96946", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96948", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.9695", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96952", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.9696", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96963", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.33811", "scoring_system": "epss", "scoring_elements": "0.96966", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4637" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4637", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4637" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33233.txt", "reference_id": "CVE-2009-4637;OSVDB-58509", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33233.txt" }, { "reference_url": "https://www.securityfocus.com/bid/36465/info", "reference_id": "CVE-2009-4637;OSVDB-58509", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/36465/info" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" }, { "reference_url": "https://usn.ubuntu.com/931-1/", "reference_id": "USN-931-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/931-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4637" ], "risk_score": 0.6, "exploitability": "2.0", "weighted_severity": "0.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mz5h-6t71-4qc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30970?format=api", "vulnerability_id": "VCID-sg5r-wbsa-eyd8", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.8751", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.8752", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87534", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87536", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87562", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87573", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87569", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87566", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.8758", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03478", "scoring_system": "epss", "scoring_elements": "0.87579", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4632" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" }, { "reference_url": "https://usn.ubuntu.com/931-1/", "reference_id": "USN-931-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/931-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4632" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sg5r-wbsa-eyd8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30972?format=api", "vulnerability_id": "VCID-tbc1-g9n2-97af", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4634", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90633", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90637", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90648", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90656", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90667", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90672", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90681", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90677", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90696", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90693", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05987", "scoring_system": "epss", "scoring_elements": "0.90691", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4634" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4634", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4634" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" }, { "reference_url": "https://usn.ubuntu.com/931-1/", "reference_id": "USN-931-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/931-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4634" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tbc1-g9n2-97af" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30976?format=api", "vulnerability_id": "VCID-trkw-xdsx-sffu", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4638", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85825", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85837", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85854", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85858", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85876", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85886", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85901", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85898", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85893", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85911", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85915", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02706", "scoring_system": "epss", "scoring_elements": "0.85906", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4638" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4638" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-trkw-xdsx-sffu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30978?format=api", "vulnerability_id": "VCID-uf6u-1kyd-nqc5", "summary": "Multiple vulnerabilities were found in FFmpeg, the worst of which\n might enable remote attackers to cause user-assisted execution of arbitrary\n code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4640", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87752", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87762", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87778", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87799", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87805", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87817", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87811", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.8781", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87824", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.87823", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03623", "scoring_system": "epss", "scoring_elements": "0.8782", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4640" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4640", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4640" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442", "reference_id": "550442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550442" }, { "reference_url": "https://security.gentoo.org/glsa/201310-12", "reference_id": "GLSA-201310-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201310-12" }, { "reference_url": "https://usn.ubuntu.com/931-1/", "reference_id": "USN-931-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/931-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583057?format=api", "purl": "pkg:deb/debian/ffmpeg@4:0.5%2Bsvn20090706-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582177?format=api", "purl": "pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ujjc-ays1-gfc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582178?format=api", "purl": "pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" }, { "vulnerability": "VCID-e9kf-tzg8-9bht" }, { "vulnerability": "VCID-grh1-jxmf-dqdv" }, { "vulnerability": "VCID-mun9-fyvn-8kfs" }, { "vulnerability": "VCID-ns98-tu4j-sfd5" }, { "vulnerability": "VCID-uakc-kpg5-2ug5" }, { "vulnerability": "VCID-wrb6-w8ps-uuge" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582179?format=api", "purl": "pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qje-t52h-fyfk" }, { "vulnerability": "VCID-352p-mxyy-k3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/582180?format=api", "purl": "pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-4640" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uf6u-1kyd-nqc5" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@4:0.5%252Bsvn20090706-3%3Fdistro=trixie" }