Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/sendmail@0?distro=trixie

Type deb

Namespace debian

Name sendmail

Version 0

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 8.12-4

Latest_non_vulnerable_version 8.18.2-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-28we-h9bn-4ubd

vulnerability_id VCID-28we-h9bn-4ubd

summary A Improper Link Resolution Before File Access ('Link Following') vulnerability in a script called by the sendmail systemd service of openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: SUSE openSUSE Factory sendmail versions prior to 8.17.1-1.1.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-31256

reference_id

reference_type

scores

value	0.00128
scoring_system	epss
scoring_elements	0.32158
published_at	2026-04-21T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32303
published_at	2026-04-02T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32173
published_at	2026-04-13T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32207
published_at	2026-04-16T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32187
published_at	2026-04-18T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32341
published_at	2026-04-04T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32166
published_at	2026-04-07T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32215
published_at	2026-04-08T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32242
published_at	2026-04-09T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32243
published_at	2026-04-11T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32205
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-31256

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.suse.com/show_bug.cgi?id=1204696

reference_id

show_bug.cgi?id=1204696

reference_type

scores

value	7.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-09T19:11:41Z/

url

https://bugzilla.suse.com/show_bug.cgi?id=1204696

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2022-31256

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-28we-h9bn-4ubd

url VCID-6r2h-krab-7kfb

vulnerability_id VCID-6r2h-krab-7kfb

summary sendmail allows external mail with from address xxx@localhost.localdomain

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7176.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7176.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-7176

reference_id

reference_type

scores

value	0.00729
scoring_system	epss
scoring_elements	0.72584
published_at	2026-04-01T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72673
published_at	2026-04-16T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72683
published_at	2026-04-18T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72592
published_at	2026-04-02T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72608
published_at	2026-04-04T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72585
published_at	2026-04-07T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72624
published_at	2026-04-08T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72636
published_at	2026-04-09T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72658
published_at	2026-04-11T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.7264
published_at	2026-04-12T12:55:00Z

value	0.00729
scoring_system	epss
scoring_elements	0.72631
published_at	2026-04-13T12:55:00Z

value	0.00757
scoring_system	epss
scoring_elements	0.73325
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-7176

reference_url	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=171838
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=171838

reference_url	http://secunia.com/advisories/25098
reference_id
reference_type
scores
url	http://secunia.com/advisories/25098

reference_url	http://secunia.com/advisories/25743
reference_id
reference_type
scores
url	http://secunia.com/advisories/25743

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11499
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11499

reference_url	http://support.avaya.com/elmodocs2/security/ASA-2007-248.htm
reference_id
reference_type
scores
url	http://support.avaya.com/elmodocs2/security/ASA-2007-248.htm

reference_url	http://www.redhat.com/support/errata/RHSA-2007-0252.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2007-0252.html

reference_url	http://www.securityfocus.com/bid/23742
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/23742

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=238540
reference_id	238540
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=238540

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*
reference_id	cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::
reference_id	cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2006-7176

reference_id

CVE-2006-7176

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2006-7176

reference_url	https://access.redhat.com/errata/RHSA-2007:0252
reference_id	RHSA-2007:0252
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0252

reference_url	https://access.redhat.com/errata/RHSA-2010:0237
reference_id	RHSA-2010:0237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0237

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2006-7176

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6r2h-krab-7kfb

url VCID-8x67-725v-huh9

vulnerability_id VCID-8x67-725v-huh9

summary SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-1999-1580

reference_id

reference_type

scores

value	0.00708
scoring_system	epss
scoring_elements	0.72224
published_at	2026-04-21T12:55:00Z

value	0.00708
scoring_system	epss
scoring_elements	0.72229
published_at	2026-04-16T12:55:00Z

value	0.00708
scoring_system	epss
scoring_elements	0.72238
published_at	2026-04-18T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.7362
published_at	2026-04-04T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73593
published_at	2026-04-07T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73629
published_at	2026-04-08T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73665
published_at	2026-04-11T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73647
published_at	2026-04-12T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73638
published_at	2026-04-13T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73642
published_at	2026-04-09T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73587
published_at	2026-04-01T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.73597
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-1999-1580

reference_url	http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html
reference_id
reference_type
scores
url	http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html

reference_url	http://www.auscert.org.au/render.html?it=1853&cid=1978
reference_id
reference_type
scores
url	http://www.auscert.org.au/render.html?it=1853&cid=1978

reference_url	http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul
reference_id
reference_type
scores
url	http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul

reference_url	http://www.kb.cert.org/vuls/id/3278
reference_id
reference_type
scores
url	http://www.kb.cert.org/vuls/id/3278

reference_url	http://www.securityfocus.com/bid/7829
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/7829

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5.59:::::::*
reference_id	cpe:2.3:a:sendmail:sendmail:5.59:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5.59:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5.61:::::::*
reference_id	cpe:2.3:a:sendmail:sendmail:5.61:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5.61:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5.65:::::::*
reference_id	cpe:2.3:a:sendmail:sendmail:5.65:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5.65:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.1:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.2:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3c:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.3c:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3c:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3u1:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.3u1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3u1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.4:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.4jl:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.4jl:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.4jl:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-1999-1580

reference_id

CVE-1999-1580

reference_type

scores

value	7.2
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-1999-1580

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-1999-1580

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8x67-725v-huh9

url VCID-s44j-pgfp-zfbt

vulnerability_id VCID-s44j-pgfp-zfbt

summary Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-1999-1592

reference_id

reference_type

scores

value	0.00394
scoring_system	epss
scoring_elements	0.60346
published_at	2026-04-21T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60187
published_at	2026-04-01T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60264
published_at	2026-04-02T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.6029
published_at	2026-04-04T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60258
published_at	2026-04-07T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60308
published_at	2026-04-08T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60322
published_at	2026-04-09T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60343
published_at	2026-04-11T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60329
published_at	2026-04-12T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.6031
published_at	2026-04-13T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.6035
published_at	2026-04-16T12:55:00Z

value	0.00394
scoring_system	epss
scoring_elements	0.60358
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-1999-1592

reference_url	http://sunsolve.sun.com/search/document.do?assetkey=1-22-00159-1
reference_id
reference_type
scores
url	http://sunsolve.sun.com/search/document.do?assetkey=1-22-00159-1

reference_url	http://www.securityfocus.com/bid/243
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/243

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5:::::::*
reference_id	cpe:2.3:a:sendmail:sendmail:5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3u1:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.3u1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.3u1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.4:::::::*
reference_id	cpe:2.3:o:sun:sunos:4.1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:sun:sunos:4.1.4:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-1999-1592

reference_id

CVE-1999-1592

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-1999-1592

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-1999-1592

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s44j-pgfp-zfbt

url VCID-v6wg-pqrr-z7dm

vulnerability_id VCID-v6wg-pqrr-z7dm

summary Sendmail allows SSLv2 during STARTTLS, and the CipherList config option isn't supported so you can't turn it off

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7175.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-7175.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-7175

reference_id

reference_type

scores

value	0.00243
scoring_system	epss
scoring_elements	0.47571
published_at	2026-04-21T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.4751
published_at	2026-04-01T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47539
published_at	2026-04-02T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.4756
published_at	2026-04-09T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47508
published_at	2026-04-07T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47563
published_at	2026-04-08T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47583
published_at	2026-04-11T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47559
published_at	2026-04-12T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47568
published_at	2026-04-13T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47626
published_at	2026-04-16T12:55:00Z

value	0.00243
scoring_system	epss
scoring_elements	0.47618
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-7175

reference_url	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=172352
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=172352

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=172352
reference_id	172352
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=172352

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*
reference_id	cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sendmail:sendmail:8.13.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::
reference_id	cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:4.0:update4::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2006-7175

reference_id

CVE-2006-7175

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2006-7175

fixed_packages

url	pkg:deb/debian/sendmail@0?distro=trixie
purl	pkg:deb/debian/sendmail@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

url pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/sendmail@8.15.2-22%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u8aq-2qhu-gff5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.15.2-22%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/sendmail@8.17.1.9-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.17.1.9-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.1-6%3Fdistro=trixie

url	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
purl	pkg:deb/debian/sendmail@8.18.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@8.18.2-1%3Fdistro=trixie

aliases CVE-2006-7175

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v6wg-pqrr-z7dm

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sendmail@0%3Fdistro=trixie

Package Instance