Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/351736?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/351736?format=api", "vulnerability_id": "VCID-6v1d-1wfr-vqd1", "summary": "ImageMagick: Magick.NET: ImageMagick: Denial of Service via heap use-after-free in XMP profile processing", "aliases": [ { "alias": "CVE-2026-40311" }, { "alias": "GHSA-r83h-crwp-3vm7" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1067681?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=loongarch64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=loongarch64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067682?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=ppc64le&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=ppc64le&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067683?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=riscv64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=riscv64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067684?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=s390x&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=s390x&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067685?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=x86&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=x86&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067686?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=x86_64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=x86_64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067695?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=aarch64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=aarch64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067696?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=armhf&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=armhf&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067697?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=armv7&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=armv7&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067698?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=loongarch64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067699?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=ppc64le&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067700?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=riscv64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=riscv64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067701?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=s390x&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=s390x&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067702?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=x86&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=x86&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067703?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=x86_64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=x86_64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067680?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=armv7&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=armv7&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067678?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=aarch64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=aarch64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067679?format=api", "purl": "pkg:apk/alpine/imagemagick@7.1.2.19-r0?arch=armhf&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/imagemagick@7.1.2.19-r0%3Farch=armhf&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1068118?format=api", "purl": "pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u8", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/1054646?format=api", "purl": "pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u7", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1068084?format=api", "purl": "pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067546?format=api", "purl": "pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066781?format=api", "purl": "pkg:nuget/Magick.NET-Q16-arm64@14.12.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q16-arm64@14.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066787?format=api", "purl": "pkg:nuget/Magick.NET-Q16-HDRI-arm64@14.12.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q16-HDRI-arm64@14.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066789?format=api", "purl": "pkg:nuget/Magick.NET-Q16-HDRI-OpenMP-arm64@14.12.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q16-HDRI-OpenMP-arm64@14.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066783?format=api", "purl": "pkg:nuget/Magick.NET-Q16-OpenMP-arm64@14.12.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q16-OpenMP-arm64@14.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066788?format=api", "purl": "pkg:nuget/Magick.NET-Q16-OpenMP-x64@14.12.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q16-OpenMP-x64@14.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066780?format=api", "purl": "pkg:nuget/Magick.NET-Q8-arm64@14.12.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q8-arm64@14.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066782?format=api", "purl": "pkg:nuget/Magick.NET-Q8-OpenMP-arm64@14.12.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q8-OpenMP-arm64@14.12.0" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1026113?format=api", "purl": "pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-15ny-qqbj-qyfk" }, { "vulnerability": "VCID-1cpn-zvem-v7gt" }, { "vulnerability": "VCID-29r3-kvf4-n3hc" }, { "vulnerability": "VCID-2gw3-qfan-jygd" }, { "vulnerability": "VCID-2zje-ag2v-7kac" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-54da-fzyt-4ud2" }, { "vulnerability": "VCID-5s8n-dfjf-ruey" }, { "vulnerability": "VCID-5uyd-bv33-h7g1" }, { "vulnerability": "VCID-5zkt-kcgx-a3e2" }, { "vulnerability": "VCID-62ar-kwbq-nyh3" }, { "vulnerability": "VCID-6h7x-3rue-kucp" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-784p-34mz-vucz" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-7t1t-1spz-gfee" }, { "vulnerability": "VCID-9ewm-6688-kkar" }, { "vulnerability": "VCID-a2qm-vkc3-qkd5" }, { "vulnerability": "VCID-acsa-1uwk-fqee" }, { "vulnerability": "VCID-b43n-3d1g-u3fe" }, { "vulnerability": "VCID-b5pd-kk97-gban" }, { "vulnerability": "VCID-cbqr-aybx-d3e6" }, { "vulnerability": "VCID-cuhw-ew1g-s3h2" }, { "vulnerability": "VCID-d8yf-8rff-3yhf" }, { "vulnerability": "VCID-dtza-65ku-aber" }, { "vulnerability": "VCID-e3ne-1hd5-dyfg" }, { "vulnerability": "VCID-eb4u-x1mt-2uan" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-ef36-52cx-dfg5" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-emmr-15qp-vfah" }, { "vulnerability": "VCID-f1zu-xb4j-8qhp" }, { "vulnerability": "VCID-f6pf-5jnz-fkd1" }, { "vulnerability": "VCID-fnck-7mvx-hqc9" }, { "vulnerability": "VCID-g41y-dv8u-3yf1" }, { "vulnerability": "VCID-g679-q851-xub7" }, { "vulnerability": "VCID-g9xf-han8-6qgs" }, { "vulnerability": "VCID-gdg8-aejn-83c4" }, { "vulnerability": "VCID-h221-qd8d-tqa5" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-jc5m-7rvc-2qg6" }, { "vulnerability": "VCID-jcjk-s89c-mbbm" }, { "vulnerability": "VCID-jtkv-nvan-jbag" }, { "vulnerability": "VCID-jvq6-xjbu-fkb9" }, { "vulnerability": "VCID-kefv-kpkk-wudf" }, { "vulnerability": "VCID-mxg1-261s-nbds" }, { "vulnerability": "VCID-n47w-r932-abey" }, { "vulnerability": "VCID-nvp5-dpj6-byda" }, { "vulnerability": "VCID-p5aw-n691-nkff" }, { "vulnerability": "VCID-pcme-bwan-3bcf" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-r3vw-ncns-cqgb" }, { "vulnerability": "VCID-r889-wzc7-1yem" }, { "vulnerability": "VCID-rbdg-vz8x-ykah" }, { "vulnerability": "VCID-rjkf-pdny-2fhn" }, { "vulnerability": "VCID-ruf5-255v-sfdb" }, { "vulnerability": "VCID-sd54-b8z1-2fg7" }, { "vulnerability": "VCID-sdc2-fcap-abaz" }, { "vulnerability": "VCID-spch-fffg-4yc5" }, { "vulnerability": "VCID-sw7g-hxxr-n3e1" }, { "vulnerability": "VCID-tt6z-t31v-dkdd" }, { "vulnerability": "VCID-tv15-dcnu-pbbn" }, { "vulnerability": "VCID-utfe-h3b7-jqcj" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-uwj5-1fkf-7qg9" }, { "vulnerability": "VCID-vaks-d4k5-zue7" }, { "vulnerability": "VCID-vpdn-g1k9-1kdn" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" }, { "vulnerability": "VCID-x8c1-btup-4ygu" }, { "vulnerability": "VCID-x8c6-9pse-xkc8" }, { "vulnerability": "VCID-y4hn-6bv6-jugw" }, { "vulnerability": "VCID-y58b-be93-hbfd" }, { "vulnerability": "VCID-yx7r-r7ez-7uhp" }, { "vulnerability": "VCID-z9t9-bxf9-hkfk" }, { "vulnerability": "VCID-zab9-9tqj-hbhg" }, { "vulnerability": "VCID-zvq4-ybph-buga" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/925284?format=api", "purl": "pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1cpn-zvem-v7gt" }, { "vulnerability": "VCID-2zje-ag2v-7kac" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-54da-fzyt-4ud2" }, { "vulnerability": "VCID-6h7x-3rue-kucp" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-a2qm-vkc3-qkd5" }, { "vulnerability": "VCID-cuhw-ew1g-s3h2" }, { "vulnerability": "VCID-eb4u-x1mt-2uan" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-g41y-dv8u-3yf1" }, { "vulnerability": "VCID-g679-q851-xub7" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-jc5m-7rvc-2qg6" }, { "vulnerability": "VCID-jcjk-s89c-mbbm" }, { "vulnerability": "VCID-n47w-r932-abey" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-r3vw-ncns-cqgb" }, { "vulnerability": "VCID-rbdg-vz8x-ykah" }, { "vulnerability": "VCID-rjkf-pdny-2fhn" }, { "vulnerability": "VCID-sw7g-hxxr-n3e1" }, { "vulnerability": "VCID-tt6z-t31v-dkdd" }, { "vulnerability": "VCID-tv15-dcnu-pbbn" }, { "vulnerability": "VCID-utfe-h3b7-jqcj" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" }, { "vulnerability": "VCID-x8c6-9pse-xkc8" }, { "vulnerability": "VCID-y58b-be93-hbfd" }, { "vulnerability": "VCID-zab9-9tqj-hbhg" }, { "vulnerability": "VCID-zvq4-ybph-buga" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/925282?format=api", "purl": "pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1cpn-zvem-v7gt" }, { "vulnerability": "VCID-2zje-ag2v-7kac" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-54da-fzyt-4ud2" }, { "vulnerability": "VCID-6h7x-3rue-kucp" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-a2qm-vkc3-qkd5" }, { "vulnerability": "VCID-cuhw-ew1g-s3h2" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-g41y-dv8u-3yf1" }, { "vulnerability": "VCID-g679-q851-xub7" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-jc5m-7rvc-2qg6" }, { "vulnerability": "VCID-jcjk-s89c-mbbm" }, { "vulnerability": "VCID-n47w-r932-abey" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-r3vw-ncns-cqgb" }, { "vulnerability": "VCID-rbdg-vz8x-ykah" }, { "vulnerability": "VCID-rjkf-pdny-2fhn" }, { "vulnerability": "VCID-sw7g-hxxr-n3e1" }, { "vulnerability": "VCID-tt6z-t31v-dkdd" }, { "vulnerability": "VCID-tv15-dcnu-pbbn" }, { "vulnerability": "VCID-utfe-h3b7-jqcj" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" }, { "vulnerability": "VCID-x8c6-9pse-xkc8" }, { "vulnerability": "VCID-y58b-be93-hbfd" }, { "vulnerability": "VCID-zab9-9tqj-hbhg" }, { "vulnerability": "VCID-zvq4-ybph-buga" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1026114?format=api", "purl": "pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1cpn-zvem-v7gt" }, { "vulnerability": "VCID-2zje-ag2v-7kac" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-54da-fzyt-4ud2" }, { "vulnerability": "VCID-6h7x-3rue-kucp" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-a2qm-vkc3-qkd5" }, { "vulnerability": "VCID-cuhw-ew1g-s3h2" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-g41y-dv8u-3yf1" }, { "vulnerability": "VCID-g679-q851-xub7" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-jc5m-7rvc-2qg6" }, { "vulnerability": "VCID-jcjk-s89c-mbbm" }, { "vulnerability": "VCID-n47w-r932-abey" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-r3vw-ncns-cqgb" }, { "vulnerability": "VCID-rbdg-vz8x-ykah" }, { "vulnerability": "VCID-rjkf-pdny-2fhn" }, { "vulnerability": "VCID-sw7g-hxxr-n3e1" }, { "vulnerability": "VCID-tt6z-t31v-dkdd" }, { "vulnerability": "VCID-tv15-dcnu-pbbn" }, { "vulnerability": "VCID-utfe-h3b7-jqcj" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" }, { "vulnerability": "VCID-x8c6-9pse-xkc8" }, { "vulnerability": "VCID-y58b-be93-hbfd" }, { "vulnerability": "VCID-zab9-9tqj-hbhg" }, { "vulnerability": "VCID-zvq4-ybph-buga" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/925287?format=api", "purl": "pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yv5-qdeg-9bag" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-4s37-h3p7-6uab" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-a2qm-vkc3-qkd5" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-jc5m-7rvc-2qg6" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-tt6z-t31v-dkdd" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" }, { "vulnerability": "VCID-zvq4-ybph-buga" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1054645?format=api", "purl": "pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yv5-qdeg-9bag" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-4s37-h3p7-6uab" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-a2qm-vkc3-qkd5" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-jc5m-7rvc-2qg6" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-tt6z-t31v-dkdd" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" }, { "vulnerability": "VCID-zvq4-ybph-buga" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1068083?format=api", "purl": "pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yv5-qdeg-9bag" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-4s37-h3p7-6uab" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/925286?format=api", "purl": "pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yv5-qdeg-9bag" }, { "vulnerability": "VCID-381g-7gdr-qydg" }, { "vulnerability": "VCID-441f-z9bp-vbdu" }, { "vulnerability": "VCID-4s37-h3p7-6uab" }, { "vulnerability": "VCID-6v1d-1wfr-vqd1" }, { "vulnerability": "VCID-7gb9-gd78-7bdu" }, { "vulnerability": "VCID-eeju-vhdm-aqbe" }, { "vulnerability": "VCID-egwu-28fp-dye6" }, { "vulnerability": "VCID-j6tc-f4fc-mbcv" }, { "vulnerability": "VCID-qjxn-gm96-7ygc" }, { "vulnerability": "VCID-uvkp-1zss-57gr" }, { "vulnerability": "VCID-w9zg-tsbg-afa1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40311.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40311.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-40311", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03186", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03313", "published_at": "2026-04-18T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00319", "published_at": "2026-04-21T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.0032", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-40311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40311" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/dlemstra/Magick.NET/releases/tag/14.12.0", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:48:25Z/" } ], "url": "https://github.com/dlemstra/Magick.NET/releases/tag/14.12.0" }, { "reference_url": "https://github.com/ImageMagick/ImageMagick", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ImageMagick/ImageMagick" }, { "reference_url": "https://github.com/ImageMagick/ImageMagick/commit/5facfecf1abb3fed46a08f614dcc43d1e548e20d", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:48:25Z/" } ], "url": "https://github.com/ImageMagick/ImageMagick/commit/5facfecf1abb3fed46a08f614dcc43d1e548e20d" }, { "reference_url": "https://github.com/ImageMagick/ImageMagick/releases/tag/7.1.2-19", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:48:25Z/" } ], "url": "https://github.com/ImageMagick/ImageMagick/releases/tag/7.1.2-19" }, { "reference_url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-r83h-crwp-3vm7", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-14T15:48:25Z/" } ], "url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-r83h-crwp-3vm7" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40311", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40311" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134627", "reference_id": "1134627", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134627" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458051", "reference_id": "2458051", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458051" }, { "reference_url": "https://github.com/advisories/GHSA-r83h-crwp-3vm7", "reference_id": "GHSA-r83h-crwp-3vm7", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r83h-crwp-3vm7" } ], "weaknesses": [ { "cwe_id": 825, "name": "Expired Pointer Dereference", "description": "The product dereferences a pointer that contains a location for memory that was previously valid, but is no longer valid." }, { "cwe_id": 416, "name": "Use After Free", "description": "Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code." }, { "cwe_id": 693, "name": "Protection Mechanism Failure", "description": "The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product." } ], "exploits": [], "severity_range_score": "4.0 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6v1d-1wfr-vqd1" }