Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-hj85-sup9-abft
Summarygimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image
Aliases
0
alias CVE-2026-4887
Fixed_packages
0
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u10
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u10
1
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u8
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u8
2
url pkg:deb/debian/gimp@3.2.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.0-1%3Fdistro=trixie
3
url pkg:deb/debian/gimp@3.2.2-1
purl pkg:deb/debian/gimp@3.2.2-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1
4
url pkg:deb/debian/gimp@3.2.2-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.2-1%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.2.4-1?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-1w47-u2aa-8uaj
2
vulnerability VCID-2k57-pmhe-9uds
3
vulnerability VCID-2p8s-2h2y-aqg4
4
vulnerability VCID-2yr2-zppt-47eq
5
vulnerability VCID-3sqk-cbwn-tqa7
6
vulnerability VCID-81y4-4cxp-bybu
7
vulnerability VCID-99yx-7yr3-dfht
8
vulnerability VCID-9v2z-2myu-bfd3
9
vulnerability VCID-bhsc-qy1f-27dj
10
vulnerability VCID-d967-53mv-13b6
11
vulnerability VCID-dav9-9ar6-gkbn
12
vulnerability VCID-dkmg-nu4f-xbay
13
vulnerability VCID-dtpr-ndvm-5udg
14
vulnerability VCID-fraw-9hj8-vbhs
15
vulnerability VCID-gdxp-wy9y-m3h1
16
vulnerability VCID-gfzg-1hvp-5ugd
17
vulnerability VCID-hj85-sup9-abft
18
vulnerability VCID-hrab-t25s-5ybg
19
vulnerability VCID-jy45-8uuz-y7bf
20
vulnerability VCID-krn9-65fh-sqgq
21
vulnerability VCID-ney7-z8qy-kuce
22
vulnerability VCID-qsyr-7tn1-uyhv
23
vulnerability VCID-rraw-1e9t-x3f3
24
vulnerability VCID-tth9-nncy-5qap
25
vulnerability VCID-ubet-venh-tqct
26
vulnerability VCID-uujf-3fhp-8fgg
27
vulnerability VCID-va44-vsem-xuf5
28
vulnerability VCID-wkrp-v537-x3hy
29
vulnerability VCID-z2up-g7ms-gfg2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-3sqk-cbwn-tqa7
2
vulnerability VCID-9v2z-2myu-bfd3
3
vulnerability VCID-d967-53mv-13b6
4
vulnerability VCID-dkmg-nu4f-xbay
5
vulnerability VCID-fraw-9hj8-vbhs
6
vulnerability VCID-gfzg-1hvp-5ugd
7
vulnerability VCID-hj85-sup9-abft
8
vulnerability VCID-ney7-z8qy-kuce
9
vulnerability VCID-va44-vsem-xuf5
10
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-gfzg-1hvp-5ugd
6
vulnerability VCID-hj85-sup9-abft
7
vulnerability VCID-ney7-z8qy-kuce
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u7?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hm4-srhz-tqhb
1
vulnerability VCID-9v2z-2myu-bfd3
2
vulnerability VCID-d967-53mv-13b6
3
vulnerability VCID-dkmg-nu4f-xbay
4
vulnerability VCID-fraw-9hj8-vbhs
5
vulnerability VCID-hj85-sup9-abft
6
vulnerability VCID-ney7-z8qy-kuce
7
vulnerability VCID-rw3k-nfe2-4qd2
8
vulnerability VCID-va44-vsem-xuf5
9
vulnerability VCID-wkrp-v537-x3hy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u7%3Fdistro=trixie
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4887.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4887.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-4887
reference_id
reference_type
scores
0
value 0.00063
scoring_system epss
scoring_elements 0.196
published_at 2026-04-21T12:55:00Z
1
value 0.00087
scoring_system epss
scoring_elements 0.25065
published_at 2026-04-02T12:55:00Z
2
value 0.00087
scoring_system epss
scoring_elements 0.25006
published_at 2026-04-11T12:55:00Z
3
value 0.00087
scoring_system epss
scoring_elements 0.24965
published_at 2026-04-12T12:55:00Z
4
value 0.00087
scoring_system epss
scoring_elements 0.24911
published_at 2026-04-13T12:55:00Z
5
value 0.00087
scoring_system epss
scoring_elements 0.24924
published_at 2026-04-16T12:55:00Z
6
value 0.00087
scoring_system epss
scoring_elements 0.24916
published_at 2026-04-18T12:55:00Z
7
value 0.00087
scoring_system epss
scoring_elements 0.25103
published_at 2026-04-04T12:55:00Z
8
value 0.00087
scoring_system epss
scoring_elements 0.24878
published_at 2026-04-07T12:55:00Z
9
value 0.00087
scoring_system epss
scoring_elements 0.24947
published_at 2026-04-08T12:55:00Z
10
value 0.00087
scoring_system epss
scoring_elements 0.24992
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-4887
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4887
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4887
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.gnome.org/GNOME/gimp/-/issues/15960
reference_id 15960
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T12:58:38Z/
url https://gitlab.gnome.org/GNOME/gimp/-/issues/15960
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2451669
reference_id 2451669
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T12:58:38Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2451669
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
10
reference_url https://access.redhat.com/security/cve/CVE-2026-4887
reference_id CVE-2026-4887
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T12:58:38Z/
url https://access.redhat.com/security/cve/CVE-2026-4887
Weaknesses
0
cwe_id 193
name Off-by-one Error
description A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.
Exploits
Severity_range_score6.1 - 6.1
Exploitability0.5
Weighted_severity5.5
Risk_score2.8
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-hj85-sup9-abft