{"url":"http://public2.vulnerablecode.io/api/packages/10133?format=json","purl":"pkg:alpm/archlinux/pacman@5.1.2-1","type":"alpm","namespace":"archlinux","name":"pacman","version":"5.1.2-1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"5.2.0-1","latest_non_vulnerable_version":"5.2.0-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197357?format=json","vulnerability_id":"VCID-kjtu-antp-ekdr","summary":"arbitrary code execution","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9686","reference_id":"","reference_type":"","scores":[{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.59643","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.59751","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9686"},{"reference_url":"https://security.archlinux.org/ASA-201903-7","reference_id":"ASA-201903-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201903-7"},{"reference_url":"https://security.archlinux.org/AVG-921","reference_id":"AVG-921","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-921"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/10028?format=json","purl":"pkg:alpm/archlinux/pacman@5.1.3-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56nn-p6cf-jqht"},{"vulnerability":"VCID-cddn-22q7-3ygf"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/pacman@5.1.3-1"}],"aliases":["CVE-2019-9686"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kjtu-antp-ekdr"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/pacman@5.1.2-1"}