Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
Typedeb
Namespacedebian
Namegimp
Version2.10.22-4+deb11u3
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.10.22-4+deb11u4
Latest_non_vulnerable_version3.2.4-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2k57-pmhe-9uds
vulnerability_id VCID-2k57-pmhe-9uds
summary GIMP FLI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FLI files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25100.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-2761
reference_id
reference_type
scores
0
value 0.00221
scoring_system epss
scoring_elements 0.44681
published_at 2026-04-21T12:55:00Z
1
value 0.00221
scoring_system epss
scoring_elements 0.44705
published_at 2026-04-02T12:55:00Z
2
value 0.00221
scoring_system epss
scoring_elements 0.44703
published_at 2026-04-13T12:55:00Z
3
value 0.00221
scoring_system epss
scoring_elements 0.44758
published_at 2026-04-16T12:55:00Z
4
value 0.00221
scoring_system epss
scoring_elements 0.44751
published_at 2026-04-18T12:55:00Z
5
value 0.00221
scoring_system epss
scoring_elements 0.44725
published_at 2026-04-04T12:55:00Z
6
value 0.00221
scoring_system epss
scoring_elements 0.44662
published_at 2026-04-07T12:55:00Z
7
value 0.00221
scoring_system epss
scoring_elements 0.44715
published_at 2026-04-08T12:55:00Z
8
value 0.00221
scoring_system epss
scoring_elements 0.44717
published_at 2026-04-09T12:55:00Z
9
value 0.00221
scoring_system epss
scoring_elements 0.44734
published_at 2026-04-11T12:55:00Z
10
value 0.00221
scoring_system epss
scoring_elements 0.44702
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-2761
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2761
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2761
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
4
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-204/
reference_id ZDI-25-204
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T18:21:41Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-204/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.0.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.0-1%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
7
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
8
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
aliases CVE-2025-2761
risk_score 2.4
exploitability 0.5
weighted_severity 4.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2k57-pmhe-9uds
1
url VCID-81y4-4cxp-bybu
vulnerability_id VCID-81y4-4cxp-bybu
summary GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XWD files. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25082.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-2760
reference_id
reference_type
scores
0
value 0.00451
scoring_system epss
scoring_elements 0.63726
published_at 2026-04-21T12:55:00Z
1
value 0.00451
scoring_system epss
scoring_elements 0.63674
published_at 2026-04-02T12:55:00Z
2
value 0.00451
scoring_system epss
scoring_elements 0.63695
published_at 2026-04-13T12:55:00Z
3
value 0.00451
scoring_system epss
scoring_elements 0.6373
published_at 2026-04-16T12:55:00Z
4
value 0.00451
scoring_system epss
scoring_elements 0.6374
published_at 2026-04-18T12:55:00Z
5
value 0.00451
scoring_system epss
scoring_elements 0.637
published_at 2026-04-04T12:55:00Z
6
value 0.00451
scoring_system epss
scoring_elements 0.6366
published_at 2026-04-07T12:55:00Z
7
value 0.00451
scoring_system epss
scoring_elements 0.63712
published_at 2026-04-08T12:55:00Z
8
value 0.00451
scoring_system epss
scoring_elements 0.63729
published_at 2026-04-09T12:55:00Z
9
value 0.00451
scoring_system epss
scoring_elements 0.63743
published_at 2026-04-11T12:55:00Z
10
value 0.00451
scoring_system epss
scoring_elements 0.63728
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-2760
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2760
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2760
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107758
reference_id 1107758
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107758
4
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
5
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-203/
reference_id ZDI-25-203
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T18:26:53Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-203/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u4?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u4%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.4-3?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
7
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
8
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
aliases CVE-2025-2760
risk_score 2.4
exploitability 0.5
weighted_severity 4.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-81y4-4cxp-bybu
2
url VCID-99yx-7yr3-dfht
vulnerability_id VCID-99yx-7yr3-dfht
summary gimp: GIMP ICO File Parsing Integer Overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5473.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5473.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-5473
reference_id
reference_type
scores
0
value 0.01642
scoring_system epss
scoring_elements 0.81894
published_at 2026-04-02T12:55:00Z
1
value 0.01642
scoring_system epss
scoring_elements 0.81988
published_at 2026-04-21T12:55:00Z
2
value 0.01642
scoring_system epss
scoring_elements 0.81947
published_at 2026-04-09T12:55:00Z
3
value 0.01642
scoring_system epss
scoring_elements 0.81967
published_at 2026-04-11T12:55:00Z
4
value 0.01642
scoring_system epss
scoring_elements 0.81956
published_at 2026-04-12T12:55:00Z
5
value 0.01642
scoring_system epss
scoring_elements 0.8195
published_at 2026-04-13T12:55:00Z
6
value 0.01642
scoring_system epss
scoring_elements 0.81986
published_at 2026-04-18T12:55:00Z
7
value 0.01642
scoring_system epss
scoring_elements 0.81917
published_at 2026-04-04T12:55:00Z
8
value 0.01642
scoring_system epss
scoring_elements 0.81913
published_at 2026-04-07T12:55:00Z
9
value 0.01642
scoring_system epss
scoring_elements 0.81939
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-5473
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5473
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5473
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105005
reference_id 1105005
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105005
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2370867
reference_id 2370867
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2370867
6
reference_url https://www.gimp.org/news/2025/05/18/gimp-3-0-4-released/#general-bugfixes
reference_id #general-bugfixes
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T16:48:26Z/
url https://www.gimp.org/news/2025/05/18/gimp-3-0-4-released/#general-bugfixes
7
reference_url https://access.redhat.com/errata/RHSA-2025:9162
reference_id RHSA-2025:9162
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9162
8
reference_url https://access.redhat.com/errata/RHSA-2025:9165
reference_id RHSA-2025:9165
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9165
9
reference_url https://access.redhat.com/errata/RHSA-2025:9308
reference_id RHSA-2025:9308
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9308
10
reference_url https://access.redhat.com/errata/RHSA-2025:9309
reference_id RHSA-2025:9309
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9309
11
reference_url https://access.redhat.com/errata/RHSA-2025:9310
reference_id RHSA-2025:9310
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9310
12
reference_url https://access.redhat.com/errata/RHSA-2025:9314
reference_id RHSA-2025:9314
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9314
13
reference_url https://access.redhat.com/errata/RHSA-2025:9315
reference_id RHSA-2025:9315
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9315
14
reference_url https://access.redhat.com/errata/RHSA-2025:9316
reference_id RHSA-2025:9316
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9316
15
reference_url https://access.redhat.com/errata/RHSA-2025:9501
reference_id RHSA-2025:9501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9501
16
reference_url https://access.redhat.com/errata/RHSA-2025:9569
reference_id RHSA-2025:9569
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9569
17
reference_url https://usn.ubuntu.com/8082-1/
reference_id USN-8082-1
reference_type
scores
url https://usn.ubuntu.com/8082-1/
18
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-321/
reference_id ZDI-25-321
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T16:48:26Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-321/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.2-3.1?distro=trixie
purl pkg:deb/debian/gimp@3.0.2-3.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.2-3.1%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
7
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
8
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
aliases CVE-2025-5473
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-99yx-7yr3-dfht
3
url VCID-bhsc-qy1f-27dj
vulnerability_id VCID-bhsc-qy1f-27dj
summary gimp: Gimp Integer Overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6035.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6035.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-6035
reference_id
reference_type
scores
0
value 0.00013
scoring_system epss
scoring_elements 0.02245
published_at 2026-04-04T12:55:00Z
1
value 0.00013
scoring_system epss
scoring_elements 0.0224
published_at 2026-04-02T12:55:00Z
2
value 0.00013
scoring_system epss
scoring_elements 0.02242
published_at 2026-04-07T12:55:00Z
3
value 0.00013
scoring_system epss
scoring_elements 0.02243
published_at 2026-04-08T12:55:00Z
4
value 0.00035
scoring_system epss
scoring_elements 0.1046
published_at 2026-04-13T12:55:00Z
5
value 0.00035
scoring_system epss
scoring_elements 0.10516
published_at 2026-04-11T12:55:00Z
6
value 0.00035
scoring_system epss
scoring_elements 0.10482
published_at 2026-04-12T12:55:00Z
7
value 0.00035
scoring_system epss
scoring_elements 0.10329
published_at 2026-04-16T12:55:00Z
8
value 0.00035
scoring_system epss
scoring_elements 0.10301
published_at 2026-04-18T12:55:00Z
9
value 0.00035
scoring_system epss
scoring_elements 0.10485
published_at 2026-04-09T12:55:00Z
10
value 0.00042
scoring_system epss
scoring_elements 0.12887
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-6035
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6035
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6035
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/13518
reference_id 13518
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-13T15:40:56Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/13518
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2372515
reference_id 2372515
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-13T15:40:56Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2372515
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
10
reference_url https://access.redhat.com/security/cve/CVE-2025-6035
reference_id CVE-2025-6035
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-13T15:40:56Z/
url https://access.redhat.com/security/cve/CVE-2025-6035
11
reference_url https://usn.ubuntu.com/8082-1/
reference_id USN-8082-1
reference_type
scores
url https://usn.ubuntu.com/8082-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u4?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u4%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.4-2?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-2%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
7
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
8
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
aliases CVE-2025-6035
risk_score 2.8
exploitability 0.5
weighted_severity 5.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bhsc-qy1f-27dj
4
url VCID-dtpr-ndvm-5udg
vulnerability_id VCID-dtpr-ndvm-5udg
summary gimp: Multiple heap buffer overflows in TGA parser
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48797.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48797.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-48797
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24168
published_at 2026-04-21T12:55:00Z
1
value 0.00083
scoring_system epss
scoring_elements 0.24245
published_at 2026-04-12T12:55:00Z
2
value 0.00083
scoring_system epss
scoring_elements 0.24188
published_at 2026-04-13T12:55:00Z
3
value 0.00083
scoring_system epss
scoring_elements 0.24204
published_at 2026-04-16T12:55:00Z
4
value 0.00083
scoring_system epss
scoring_elements 0.24191
published_at 2026-04-18T12:55:00Z
5
value 0.00083
scoring_system epss
scoring_elements 0.24345
published_at 2026-04-02T12:55:00Z
6
value 0.00083
scoring_system epss
scoring_elements 0.24378
published_at 2026-04-04T12:55:00Z
7
value 0.00083
scoring_system epss
scoring_elements 0.24161
published_at 2026-04-07T12:55:00Z
8
value 0.00083
scoring_system epss
scoring_elements 0.24228
published_at 2026-04-08T12:55:00Z
9
value 0.00083
scoring_system epss
scoring_elements 0.24271
published_at 2026-04-09T12:55:00Z
10
value 0.00083
scoring_system epss
scoring_elements 0.24288
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-48797
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48797
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48797
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
reference_id 11822
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2368558
reference_id 2368558
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2368558
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
reference_id cpe:/a:redhat:rhel_aus:8.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
reference_id cpe:/a:redhat:rhel_aus:8.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
reference_id cpe:/a:redhat:rhel_aus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
reference_id cpe:/a:redhat:rhel_eus:9.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
reference_id cpe:/a:redhat:rhel_tus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
reference_id cpe:/a:redhat:rhel_tus:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
reference_id cpe:/o:redhat:rhel_els:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
20
reference_url https://access.redhat.com/security/cve/CVE-2025-48797
reference_id CVE-2025-48797
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/security/cve/CVE-2025-48797
21
reference_url https://access.redhat.com/errata/RHSA-2025:9162
reference_id RHSA-2025:9162
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9162
22
reference_url https://access.redhat.com/errata/RHSA-2025:9165
reference_id RHSA-2025:9165
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9165
23
reference_url https://access.redhat.com/errata/RHSA-2025:9308
reference_id RHSA-2025:9308
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9308
24
reference_url https://access.redhat.com/errata/RHSA-2025:9309
reference_id RHSA-2025:9309
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9309
25
reference_url https://access.redhat.com/errata/RHSA-2025:9310
reference_id RHSA-2025:9310
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9310
26
reference_url https://access.redhat.com/errata/RHSA-2025:9314
reference_id RHSA-2025:9314
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9314
27
reference_url https://access.redhat.com/errata/RHSA-2025:9315
reference_id RHSA-2025:9315
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9315
28
reference_url https://access.redhat.com/errata/RHSA-2025:9316
reference_id RHSA-2025:9316
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9316
29
reference_url https://access.redhat.com/errata/RHSA-2025:9501
reference_id RHSA-2025:9501
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9501
30
reference_url https://access.redhat.com/errata/RHSA-2025:9569
reference_id RHSA-2025:9569
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:22:32Z/
url https://access.redhat.com/errata/RHSA-2025:9569
31
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.0~RC1-4?distro=trixie
purl pkg:deb/debian/gimp@3.0.0~RC1-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.0~RC1-4%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
7
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
8
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
aliases CVE-2025-48797
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dtpr-ndvm-5udg
5
url VCID-gdxp-wy9y-m3h1
vulnerability_id VCID-gdxp-wy9y-m3h1
summary gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10922.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10922.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-10922
reference_id
reference_type
scores
0
value 0.00077
scoring_system epss
scoring_elements 0.23142
published_at 2026-04-02T12:55:00Z
1
value 0.00077
scoring_system epss
scoring_elements 0.22975
published_at 2026-04-07T12:55:00Z
2
value 0.00077
scoring_system epss
scoring_elements 0.23186
published_at 2026-04-04T12:55:00Z
3
value 0.00092
scoring_system epss
scoring_elements 0.25789
published_at 2026-04-16T12:55:00Z
4
value 0.00092
scoring_system epss
scoring_elements 0.25842
published_at 2026-04-12T12:55:00Z
5
value 0.00092
scoring_system epss
scoring_elements 0.25786
published_at 2026-04-13T12:55:00Z
6
value 0.00092
scoring_system epss
scoring_elements 0.25772
published_at 2026-04-18T12:55:00Z
7
value 0.00092
scoring_system epss
scoring_elements 0.25744
published_at 2026-04-21T12:55:00Z
8
value 0.00092
scoring_system epss
scoring_elements 0.25821
published_at 2026-04-08T12:55:00Z
9
value 0.00092
scoring_system epss
scoring_elements 0.25873
published_at 2026-04-09T12:55:00Z
10
value 0.00092
scoring_system epss
scoring_elements 0.25883
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-10922
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10922
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10922
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116459
reference_id 1116459
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116459
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2407188
reference_id 2407188
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2407188
6
reference_url https://gitlab.gnome.org/GNOME/gimp/-/commit/3d909166463731e94dfe62042d76225ecfc4c1e4
reference_id 3d909166463731e94dfe62042d76225ecfc4c1e4
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-30T03:56:09Z/
url https://gitlab.gnome.org/GNOME/gimp/-/commit/3d909166463731e94dfe62042d76225ecfc4c1e4
7
reference_url https://access.redhat.com/errata/RHSA-2025:21968
reference_id RHSA-2025:21968
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:21968
8
reference_url https://access.redhat.com/errata/RHSA-2025:22417
reference_id RHSA-2025:22417
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22417
9
reference_url https://access.redhat.com/errata/RHSA-2025:22445
reference_id RHSA-2025:22445
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22445
10
reference_url https://access.redhat.com/errata/RHSA-2025:22496
reference_id RHSA-2025:22496
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22496
11
reference_url https://access.redhat.com/errata/RHSA-2025:22497
reference_id RHSA-2025:22497
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22497
12
reference_url https://access.redhat.com/errata/RHSA-2025:22498
reference_id RHSA-2025:22498
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22498
13
reference_url https://access.redhat.com/errata/RHSA-2025:22866
reference_id RHSA-2025:22866
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22866
14
reference_url https://access.redhat.com/errata/RHSA-2025:23857
reference_id RHSA-2025:23857
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23857
15
reference_url https://access.redhat.com/errata/RHSA-2026:0027
reference_id RHSA-2026:0027
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0027
16
reference_url https://access.redhat.com/errata/RHSA-2026:0250
reference_id RHSA-2026:0250
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0250
17
reference_url https://access.redhat.com/errata/RHSA-2026:0356
reference_id RHSA-2026:0356
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0356
18
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
19
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-911/
reference_id ZDI-25-911
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-30T03:56:09Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-911/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u4?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u4%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.0.4-6.1?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-6.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-6.1%3Fdistro=trixie
7
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
8
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
9
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
aliases CVE-2025-10922
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gdxp-wy9y-m3h1
6
url VCID-krn9-65fh-sqgq
vulnerability_id VCID-krn9-65fh-sqgq
summary gimp: Multiple use after free in XCF parser
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48798.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48798.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-48798
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24168
published_at 2026-04-21T12:55:00Z
1
value 0.00083
scoring_system epss
scoring_elements 0.24345
published_at 2026-04-02T12:55:00Z
2
value 0.00083
scoring_system epss
scoring_elements 0.24288
published_at 2026-04-11T12:55:00Z
3
value 0.00083
scoring_system epss
scoring_elements 0.24245
published_at 2026-04-12T12:55:00Z
4
value 0.00083
scoring_system epss
scoring_elements 0.24188
published_at 2026-04-13T12:55:00Z
5
value 0.00083
scoring_system epss
scoring_elements 0.24204
published_at 2026-04-16T12:55:00Z
6
value 0.00083
scoring_system epss
scoring_elements 0.24191
published_at 2026-04-18T12:55:00Z
7
value 0.00083
scoring_system epss
scoring_elements 0.24378
published_at 2026-04-04T12:55:00Z
8
value 0.00083
scoring_system epss
scoring_elements 0.24161
published_at 2026-04-07T12:55:00Z
9
value 0.00083
scoring_system epss
scoring_elements 0.24228
published_at 2026-04-08T12:55:00Z
10
value 0.00083
scoring_system epss
scoring_elements 0.24271
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-48798
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48798
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48798
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
reference_id 11822
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/11822
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2368557
reference_id 2368557
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2368557
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
reference_id cpe:/a:redhat:rhel_aus:8.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
reference_id cpe:/a:redhat:rhel_aus:8.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
reference_id cpe:/a:redhat:rhel_aus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_id cpe:/a:redhat:rhel_e4s:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.0::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_id cpe:/a:redhat:rhel_e4s:9.2::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
reference_id cpe:/a:redhat:rhel_eus:9.4::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
reference_id cpe:/a:redhat:rhel_tus:8.6::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
reference_id cpe:/a:redhat:rhel_tus:8.8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
reference_id cpe:/o:redhat:rhel_els:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7
20
reference_url https://access.redhat.com/security/cve/CVE-2025-48798
reference_id CVE-2025-48798
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/security/cve/CVE-2025-48798
21
reference_url https://access.redhat.com/errata/RHSA-2025:9162
reference_id RHSA-2025:9162
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9162
22
reference_url https://access.redhat.com/errata/RHSA-2025:9165
reference_id RHSA-2025:9165
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9165
23
reference_url https://access.redhat.com/errata/RHSA-2025:9308
reference_id RHSA-2025:9308
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9308
24
reference_url https://access.redhat.com/errata/RHSA-2025:9309
reference_id RHSA-2025:9309
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9309
25
reference_url https://access.redhat.com/errata/RHSA-2025:9310
reference_id RHSA-2025:9310
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9310
26
reference_url https://access.redhat.com/errata/RHSA-2025:9314
reference_id RHSA-2025:9314
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9314
27
reference_url https://access.redhat.com/errata/RHSA-2025:9315
reference_id RHSA-2025:9315
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9315
28
reference_url https://access.redhat.com/errata/RHSA-2025:9316
reference_id RHSA-2025:9316
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9316
29
reference_url https://access.redhat.com/errata/RHSA-2025:9501
reference_id RHSA-2025:9501
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9501
30
reference_url https://access.redhat.com/errata/RHSA-2025:9569
reference_id RHSA-2025:9569
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-27T14:21:28Z/
url https://access.redhat.com/errata/RHSA-2025:9569
31
reference_url https://usn.ubuntu.com/8075-1/
reference_id USN-8075-1
reference_type
scores
url https://usn.ubuntu.com/8075-1/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.0~RC1-4?distro=trixie
purl pkg:deb/debian/gimp@3.0.0~RC1-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.0~RC1-4%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
7
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
8
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
aliases CVE-2025-48798
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-krn9-65fh-sqgq
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie