Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/56897?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56897?format=api", "vulnerability_id": "VCID-tmht-8fhj-uue1", "summary": "Multiple vulnerabilities have been reported in libXfont and TightVNC,\n allowing for the execution of arbitrary code with root privileges.", "aliases": [ { "alias": "CVE-2007-1003" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/943538?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.1.1-21?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-21%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943532?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3f4a-m4rt-qqej" }, { "vulnerability": "VCID-b14x-4mtq-5fc7" }, { "vulnerability": "VCID-cxf3-8znp-rbbz" }, { "vulnerability": "VCID-hxab-xyu1-xkgc" }, { "vulnerability": "VCID-pa9n-ntq3-jqaz" }, { "vulnerability": "VCID-wzer-jnm3-rqa8" }, { "vulnerability": "VCID-x3dk-fny6-fqa5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943530?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3f4a-m4rt-qqej" }, { "vulnerability": "VCID-b14x-4mtq-5fc7" }, { "vulnerability": "VCID-hxab-xyu1-xkgc" }, { "vulnerability": "VCID-pa9n-ntq3-jqaz" }, { "vulnerability": "VCID-wzer-jnm3-rqa8" }, { "vulnerability": "VCID-x3dk-fny6-fqa5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943534?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3f4a-m4rt-qqej" }, { "vulnerability": "VCID-hxab-xyu1-xkgc" }, { "vulnerability": "VCID-pa9n-ntq3-jqaz" }, { "vulnerability": "VCID-wzer-jnm3-rqa8" }, { "vulnerability": "VCID-x3dk-fny6-fqa5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/943533?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.21-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3f4a-m4rt-qqej" }, { "vulnerability": "VCID-hxab-xyu1-xkgc" }, { "vulnerability": "VCID-pa9n-ntq3-jqaz" }, { "vulnerability": "VCID-wzer-jnm3-rqa8" }, { "vulnerability": "VCID-x3dk-fny6-fqa5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.21-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1067651?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/83227?format=api", "purl": "pkg:ebuild/net-misc/tightvnc@1.2.9-r4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/tightvnc@1.2.9-r4" }, { "url": "http://public2.vulnerablecode.io/api/packages/83228?format=api", "purl": "pkg:ebuild/x11-libs/libXfont@1.2.7-r1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-libs/libXfont@1.2.7-r1" }, { "url": "http://public2.vulnerablecode.io/api/packages/83229?format=api", "purl": "pkg:ebuild/x11-libs/libXfont@1.2.9-r4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-libs/libXfont@1.2.9-r4" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/129867?format=api", "purl": "pkg:rpm/redhat/XFree86@4.1.0-82?arch=EL", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qn37-kjm4-tbap" }, { "vulnerability": "VCID-rntx-ztv9-sqax" }, { "vulnerability": "VCID-tmht-8fhj-uue1" }, { "vulnerability": "VCID-zz57-zmka-33ev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/XFree86@4.1.0-82%3Farch=EL" }, { "url": "http://public2.vulnerablecode.io/api/packages/129865?format=api", "purl": "pkg:rpm/redhat/XFree86@4.3.0-120?arch=EL", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qn37-kjm4-tbap" }, { "vulnerability": "VCID-rntx-ztv9-sqax" }, { "vulnerability": "VCID-tmht-8fhj-uue1" }, { "vulnerability": "VCID-zz57-zmka-33ev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/XFree86@4.3.0-120%3Farch=EL" }, { "url": "http://public2.vulnerablecode.io/api/packages/129866?format=api", "purl": "pkg:rpm/redhat/xorg-x11@6.8.2-1.EL.13.37?arch=7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qn37-kjm4-tbap" }, { "vulnerability": "VCID-rntx-ztv9-sqax" }, { "vulnerability": "VCID-tmht-8fhj-uue1" }, { "vulnerability": "VCID-zz57-zmka-33ev" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11@6.8.2-1.EL.13.37%3Farch=7" }, { "url": "http://public2.vulnerablecode.io/api/packages/129868?format=api", "purl": "pkg:rpm/redhat/xorg-x11-server@1.1.1-48.13.0.1?arch=el5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-tmht-8fhj-uue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11-server@1.1.1-48.13.0.1%3Farch=el5" } ], "references": [ { "reference_url": "http://issues.foresightlinux.org/browse/FL-223", "reference_id": "", "reference_type": "", "scores": [], "url": "http://issues.foresightlinux.org/browse/FL-223" }, { "reference_url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=503", "reference_id": "", "reference_type": "", "scores": [], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=503" }, { "reference_url": "http://lists.freedesktop.org/archives/xorg-announce/2007-April/000286.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.freedesktop.org/archives/xorg-announce/2007-April/000286.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00005.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00005.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2007-0125.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2007-0125.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1003", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92114", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92071", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92078", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92085", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92091", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92102", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92105", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92109", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.9211", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92106", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92117", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1003" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1003", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1003" }, { "reference_url": "http://secunia.com/advisories/24741", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24741" }, { "reference_url": "http://secunia.com/advisories/24745", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24745" }, { "reference_url": "http://secunia.com/advisories/24756", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24756" }, { "reference_url": "http://secunia.com/advisories/24758", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24758" }, { "reference_url": "http://secunia.com/advisories/24765", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24765" }, { "reference_url": "http://secunia.com/advisories/24770", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24770" }, { "reference_url": "http://secunia.com/advisories/24771", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24771" }, { "reference_url": "http://secunia.com/advisories/24772", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24772" }, { "reference_url": "http://secunia.com/advisories/24791", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/24791" }, { "reference_url": "http://secunia.com/advisories/25004", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25004" }, { "reference_url": "http://secunia.com/advisories/25006", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25006" }, { "reference_url": "http://secunia.com/advisories/25195", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25195" }, { "reference_url": "http://secunia.com/advisories/25216", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25216" }, { "reference_url": "http://secunia.com/advisories/25305", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/25305" }, { "reference_url": "http://secunia.com/advisories/29622", "reference_id": "", "reference_type": "", "scores": [], "url": "http://secunia.com/advisories/29622" }, { "reference_url": "http://security.gentoo.org/glsa/glsa-200705-10.xml", "reference_id": "", "reference_type": "", "scores": [], "url": "http://security.gentoo.org/glsa/glsa-200705-10.xml" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33424" }, { "reference_url": "https://issues.rpath.com/browse/RPL-1213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://issues.rpath.com/browse/RPL-1213" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1980", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1980" }, { "reference_url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9798", "reference_id": "", "reference_type": "", "scores": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9798" }, { "reference_url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102886-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102886-1" }, { "reference_url": "http://support.avaya.com/elmodocs2/security/ASA-2007-178.htm", "reference_id": "", "reference_type": "", "scores": [], "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-178.htm" }, { "reference_url": "http://www.debian.org/security/2007/dsa-1294", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2007/dsa-1294" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:079", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:079" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:080", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:080" }, { "reference_url": "http://www.novell.com/linux/security/advisories/2007_27_x.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.novell.com/linux/security/advisories/2007_27_x.html" }, { "reference_url": "http://www.openbsd.org/errata39.html#021_xorg", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openbsd.org/errata39.html#021_xorg" }, { "reference_url": "http://www.openbsd.org/errata40.html#011_xorg", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openbsd.org/errata40.html#011_xorg" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2007-0126.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2007-0126.html" }, { "reference_url": "http://www.redhat.com/support/errata/RHSA-2007-0127.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.redhat.com/support/errata/RHSA-2007-0127.html" }, { "reference_url": "http://www.securityfocus.com/archive/1/464686/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/464686/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/archive/1/464816/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/archive/1/464816/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/bid/23284", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/23284" }, { "reference_url": "http://www.securityfocus.com/bid/23300", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/23300" }, { "reference_url": "http://www.securitytracker.com/id?1017857", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id?1017857" }, { "reference_url": "http://www.ubuntu.com/usn/usn-448-1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.ubuntu.com/usn/usn-448-1" }, { "reference_url": "http://www.vupen.com/english/advisories/2007/1217", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2007/1217" }, { "reference_url": "http://www.vupen.com/english/advisories/2007/1548", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.vupen.com/english/advisories/2007/1548" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=235263", "reference_id": "235263", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=235263" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:x.org:x11:7.1_1.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:x.org:x11:7.1_1.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:x.org:x11:7.1_1.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1003", "reference_id": "CVE-2007-1003", "reference_type": "", "scores": [ { "value": "9.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:S/C:C/I:C/A:C" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1003" }, { "reference_url": "https://security.gentoo.org/glsa/200705-10", "reference_id": "GLSA-200705-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200705-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0125", "reference_id": "RHSA-2007:0125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0126", "reference_id": "RHSA-2007:0126", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0126" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0127", "reference_id": "RHSA-2007:0127", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0127" }, { "reference_url": "https://usn.ubuntu.com/448-1/", "reference_id": "USN-448-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/448-1/" } ], "weaknesses": [], "exploits": [], "severity_range_score": "9.0 - 9.0", "exploitability": "0.5", "weighted_severity": "8.1", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tmht-8fhj-uue1" }