{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","type":"deb","namespace":"debian","name":"rpm","version":"6.0.1-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200124?format=json","vulnerability_id":"VCID-1ntc-urq5-gqfw","summary":"zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2096.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2096.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2096","reference_id":"","reference_type":"","scores":[{"value":"0.43032","scoring_system":"epss","scoring_elements":"0.97577","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2096"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317133","reference_id":"317133","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317133"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317523","reference_id":"317523","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317523"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317966","reference_id":"317966","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317966"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317967","reference_id":"317967","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317967"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317968","reference_id":"317968","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=317968"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318014","reference_id":"318014","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318014"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318091","reference_id":"318091","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318091"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318099","reference_id":"318099","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318099"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318100","reference_id":"318100","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318100"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318246","reference_id":"318246","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318246"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=332236","reference_id":"332236","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=332236"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=430650","reference_id":"430650","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=430650"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:569","reference_id":"RHSA-2005:569","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:569"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0264","reference_id":"RHSA-2008:0264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0264"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0525","reference_id":"RHSA-2008:0525","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0525"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0629","reference_id":"RHSA-2008:0629","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0629"},{"reference_url":"https://usn.ubuntu.com/148-1/","reference_id":"USN-148-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/148-1/"},{"reference_url":"https://usn.ubuntu.com/151-2/","reference_id":"USN-151-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/151-2/"},{"reference_url":"https://usn.ubuntu.com/151-3/","reference_id":"USN-151-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/151-3/"},{"reference_url":"https://usn.ubuntu.com/151-4/","reference_id":"USN-151-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/151-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102364?format=json","purl":"pkg:deb/debian/rpm@4.0.4-31.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.0.4-31.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2005-2096"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1ntc-urq5-gqfw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176804?format=json","vulnerability_id":"VCID-2rjq-86d8-z3fe","summary":"Multiple vulnerabilities have been found in RPM, possibly allowing\n    local attackers to gain elevated privileges or remote attackers to execute\n    arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0061.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0061.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0061","reference_id":"","reference_type":"","scores":[{"value":"0.04947","scoring_system":"epss","scoring_elements":"0.89877","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0061"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0061","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0061"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667031","reference_id":"667031","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667031"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=798585","reference_id":"798585","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=798585"},{"reference_url":"https://security.gentoo.org/glsa/201206-26","reference_id":"GLSA-201206-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0451","reference_id":"RHSA-2012:0451","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0451"},{"reference_url":"https://usn.ubuntu.com/1695-1/","reference_id":"USN-1695-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1695-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102372?format=json","purl":"pkg:deb/debian/rpm@4.9.1.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.9.1.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2012-0061"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2rjq-86d8-z3fe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9708?format=json","vulnerability_id":"VCID-4txx-gj3c-g7b6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3521.json","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3521.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3521","reference_id":"","reference_type":"","scores":[{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05246","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3521"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3521","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3521"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014723","reference_id":"1014723","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014723"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1941098","reference_id":"1941098","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1941098"},{"reference_url":"https://security.gentoo.org/glsa/202210-22","reference_id":"GLSA-202210-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0254","reference_id":"RHSA-2022:0254","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0368","reference_id":"RHSA-2022:0368","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0368"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0634","reference_id":"RHSA-2022:0634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0634"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102376?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2021-3521"],"risk_score":1.1,"exploitability":"0.5","weighted_severity":"2.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4txx-gj3c-g7b6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9765?format=json","vulnerability_id":"VCID-7d9h-eps9-eyhu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35937.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35937.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35937","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02549","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35937"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35937","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35937"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964125","reference_id":"1964125","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964125"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990543","reference_id":"990543","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990543"},{"reference_url":"https://security.gentoo.org/glsa/202210-22","reference_id":"GLSA-202210-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0424","reference_id":"RHSA-2024:0424","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0435","reference_id":"RHSA-2024:0435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0453","reference_id":"RHSA-2024:0453","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0453"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0463","reference_id":"RHSA-2024:0463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0582","reference_id":"RHSA-2024:0582","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0582"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0647","reference_id":"RHSA-2024:0647","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0647"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1383","reference_id":"RHSA-2024:1383","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1383"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1477","reference_id":"RHSA-2024:1477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1477"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102376?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2021-35937"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7d9h-eps9-eyhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8975?format=json","vulnerability_id":"VCID-9ygh-87bm-5yg4","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20271.json","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20271.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20271","reference_id":"","reference_type":"","scores":[{"value":"0.00228","scoring_system":"epss","scoring_elements":"0.4574","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20271"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1934125","reference_id":"1934125","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1934125"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308","reference_id":"985308","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308"},{"reference_url":"https://security.gentoo.org/glsa/202107-43","reference_id":"GLSA-202107-43","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-43"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2574","reference_id":"RHSA-2021:2574","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2574"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2791","reference_id":"RHSA-2021:2791","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2791"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4771","reference_id":"RHSA-2021:4771","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4771"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4785","reference_id":"RHSA-2021:4785","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4785"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4975","reference_id":"RHSA-2021:4975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4975"},{"reference_url":"https://usn.ubuntu.com/USN-5273-1/","reference_id":"USN-USN-5273-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5273-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102375?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2021-20271"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9ygh-87bm-5yg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9767?format=json","vulnerability_id":"VCID-atab-m8fr-ybgz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35939.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35939.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35939","reference_id":"","reference_type":"","scores":[{"value":"0.00202","scoring_system":"epss","scoring_elements":"0.42253","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35939"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35939","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35939"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964129","reference_id":"1964129","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964129"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990543","reference_id":"990543","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990543"},{"reference_url":"https://security.gentoo.org/glsa/202210-22","reference_id":"GLSA-202210-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0424","reference_id":"RHSA-2024:0424","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0435","reference_id":"RHSA-2024:0435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0453","reference_id":"RHSA-2024:0453","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0453"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0463","reference_id":"RHSA-2024:0463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0582","reference_id":"RHSA-2024:0582","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0582"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0647","reference_id":"RHSA-2024:0647","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0647"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1383","reference_id":"RHSA-2024:1383","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1383"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1477","reference_id":"RHSA-2024:1477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1477"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102376?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2021-35939"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-atab-m8fr-ybgz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8970?format=json","vulnerability_id":"VCID-bf36-x5yn-kug2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20266.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20266.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20266","reference_id":"","reference_type":"","scores":[{"value":"0.00063","scoring_system":"epss","scoring_elements":"0.19876","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20266"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1927741","reference_id":"1927741","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1927741"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308","reference_id":"985308","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308"},{"reference_url":"https://security.gentoo.org/glsa/202107-43","reference_id":"GLSA-202107-43","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-43"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4489","reference_id":"RHSA-2021:4489","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4489"},{"reference_url":"https://usn.ubuntu.com/USN-5273-1/","reference_id":"USN-USN-5273-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5273-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102375?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2021-20266"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bf36-x5yn-kug2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176803?format=json","vulnerability_id":"VCID-bhhu-b7rq-53b5","summary":"Multiple vulnerabilities have been found in RPM, possibly allowing\n    local attackers to gain elevated privileges or remote attackers to execute\n    arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0060.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0060.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0060","reference_id":"","reference_type":"","scores":[{"value":"0.04884","scoring_system":"epss","scoring_elements":"0.89808","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0060"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0060","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0060"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667031","reference_id":"667031","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667031"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=744858","reference_id":"744858","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=744858"},{"reference_url":"https://security.gentoo.org/glsa/201206-26","reference_id":"GLSA-201206-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0451","reference_id":"RHSA-2012:0451","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0451"},{"reference_url":"https://usn.ubuntu.com/1695-1/","reference_id":"USN-1695-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1695-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102372?format=json","purl":"pkg:deb/debian/rpm@4.9.1.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.9.1.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2012-0060"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bhhu-b7rq-53b5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9766?format=json","vulnerability_id":"VCID-bn8g-a2zy-8yew","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35938.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-35938.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35938","reference_id":"","reference_type":"","scores":[{"value":"0.00149","scoring_system":"epss","scoring_elements":"0.35206","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-35938"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35938","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35938"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964114","reference_id":"1964114","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1964114"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990543","reference_id":"990543","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990543"},{"reference_url":"https://security.gentoo.org/glsa/202210-22","reference_id":"GLSA-202210-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0424","reference_id":"RHSA-2024:0424","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0435","reference_id":"RHSA-2024:0435","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0453","reference_id":"RHSA-2024:0453","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0453"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0463","reference_id":"RHSA-2024:0463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0582","reference_id":"RHSA-2024:0582","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0582"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0647","reference_id":"RHSA-2024:0647","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0647"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1383","reference_id":"RHSA-2024:1383","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1383"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1477","reference_id":"RHSA-2024:1477","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1477"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102376?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2021-35938"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bn8g-a2zy-8yew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200285?format=json","vulnerability_id":"VCID-hgj6-dthm-4qd5","summary":"lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file, a related issue to CVE-2010-2059.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4889.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4889.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4889","reference_id":"","reference_type":"","scores":[{"value":"0.00047","scoring_system":"epss","scoring_elements":"0.14982","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4889"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4889","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4889"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584257","reference_id":"584257","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584257"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=625756","reference_id":"625756","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=625756"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0678","reference_id":"RHSA-2010:0678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0678"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102368?format=json","purl":"pkg:deb/debian/rpm@4.7.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.7.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2005-4889"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hgj6-dthm-4qd5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176802?format=json","vulnerability_id":"VCID-hhcr-mzu4-tubx","summary":"Multiple vulnerabilities have been found in RPM, possibly allowing\n    local attackers to gain elevated privileges or remote attackers to execute\n    arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3378.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3378.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3378","reference_id":"","reference_type":"","scores":[{"value":"0.07655","scoring_system":"epss","scoring_elements":"0.92079","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3378"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=645325","reference_id":"645325","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=645325"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=741606","reference_id":"741606","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=741606"},{"reference_url":"https://security.gentoo.org/glsa/201206-26","reference_id":"GLSA-201206-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1349","reference_id":"RHSA-2011:1349","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1349"},{"reference_url":"https://usn.ubuntu.com/1695-1/","reference_id":"USN-1695-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1695-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102371?format=json","purl":"pkg:deb/debian/rpm@4.9.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.9.1.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2011-3378"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hhcr-mzu4-tubx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/108177?format=json","vulnerability_id":"VCID-jcb6-w6t8-ffc4","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6435.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6435.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6435","reference_id":"","reference_type":"","scores":[{"value":"0.04712","scoring_system":"epss","scoring_elements":"0.89613","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6435"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6435","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6435"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8118","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8118"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1039811","reference_id":"1039811","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1039811"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773101","reference_id":"773101","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773101"},{"reference_url":"https://security.gentoo.org/glsa/201811-22","reference_id":"GLSA-201811-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201811-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1974","reference_id":"RHSA-2014:1974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1974"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1975","reference_id":"RHSA-2014:1975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1975"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1976","reference_id":"RHSA-2014:1976","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1976"},{"reference_url":"https://usn.ubuntu.com/2479-1/","reference_id":"USN-2479-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2479-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102374?format=json","purl":"pkg:deb/debian/rpm@4.11.3-1.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.11.3-1.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2013-6435"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jcb6-w6t8-ffc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181202?format=json","vulnerability_id":"VCID-jd7s-xx7x-cuc7","summary":"RPM is vulnerable to a buffer overflow and possibly the execution of\n    arbitrary code when opening specially crafted packages.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5466.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-5466.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-5466","reference_id":"","reference_type":"","scores":[{"value":"0.01661","scoring_system":"epss","scoring_elements":"0.82471","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-5466"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5466","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5466"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=213515","reference_id":"213515","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=213515"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397076","reference_id":"397076","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397076"},{"reference_url":"https://security.gentoo.org/glsa/200611-08","reference_id":"GLSA-200611-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200611-08"},{"reference_url":"https://usn.ubuntu.com/378-1/","reference_id":"USN-378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/378-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102369?format=json","purl":"pkg:deb/debian/rpm@4.4.1-11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.4.1-11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2006-5466"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jd7s-xx7x-cuc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176805?format=json","vulnerability_id":"VCID-jt6u-ufqh-zkce","summary":"Multiple vulnerabilities have been found in RPM, possibly allowing\n    local attackers to gain elevated privileges or remote attackers to execute\n    arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0815.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0815.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0815","reference_id":"","reference_type":"","scores":[{"value":"0.06991","scoring_system":"epss","scoring_elements":"0.91655","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0815"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0815","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0815"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667031","reference_id":"667031","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667031"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=744104","reference_id":"744104","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=744104"},{"reference_url":"https://security.gentoo.org/glsa/201206-26","reference_id":"GLSA-201206-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0451","reference_id":"RHSA-2012:0451","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0451"},{"reference_url":"https://usn.ubuntu.com/1695-1/","reference_id":"USN-1695-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1695-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102372?format=json","purl":"pkg:deb/debian/rpm@4.9.1.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.9.1.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2012-0815"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jt6u-ufqh-zkce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/9643?format=json","vulnerability_id":"VCID-p5d4-v5rs-dbhm","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3421.json","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3421.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3421","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39008","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3421"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1927747","reference_id":"1927747","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1927747"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308","reference_id":"985308","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985308"},{"reference_url":"https://security.gentoo.org/glsa/202107-43","reference_id":"GLSA-202107-43","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-43"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2574","reference_id":"RHSA-2021:2574","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2574"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2791","reference_id":"RHSA-2021:2791","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2791"},{"reference_url":"https://usn.ubuntu.com/USN-5273-1/","reference_id":"USN-USN-5273-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5273-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102375?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2021-3421"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p5d4-v5rs-dbhm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176799?format=json","vulnerability_id":"VCID-q52w-jk7j-cbaa","summary":"Multiple vulnerabilities have been found in RPM, possibly allowing\n    local attackers to gain elevated privileges or remote attackers to execute\n    arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2197.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2197.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2197","reference_id":"","reference_type":"","scores":[{"value":"0.0043","scoring_system":"epss","scoring_elements":"0.62972","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2197"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2197","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2197"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584257","reference_id":"584257","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584257"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=603244","reference_id":"603244","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=603244"},{"reference_url":"https://security.gentoo.org/glsa/201206-26","reference_id":"GLSA-201206-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-26"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102370?format=json","purl":"pkg:deb/debian/rpm@4.8.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.8.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2010-2197"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q52w-jk7j-cbaa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176798?format=json","vulnerability_id":"VCID-skjf-4vkj-9ybc","summary":"Multiple vulnerabilities have been found in RPM, possibly allowing\n    local attackers to gain elevated privileges or remote attackers to execute\n    arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2059.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2059.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2059","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14593","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2059"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2059","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2059"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584257","reference_id":"584257","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584257"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=598775","reference_id":"598775","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=598775"},{"reference_url":"https://security.gentoo.org/glsa/201206-26","reference_id":"GLSA-201206-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-26"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0678","reference_id":"RHSA-2010:0678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0679","reference_id":"RHSA-2010:0679","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0679"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102370?format=json","purl":"pkg:deb/debian/rpm@4.8.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.8.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2010-2059"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-skjf-4vkj-9ybc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/202564?format=json","vulnerability_id":"VCID-wzqg-dpn3-aqbn","summary":"The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an \"unparseable signature,\" which allows remote attackers to bypass RPM signature checks via a crafted package.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-6088.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-6088.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-6088","reference_id":"","reference_type":"","scores":[{"value":"0.00528","scoring_system":"epss","scoring_elements":"0.67604","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-6088"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6088","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6088"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2169614","reference_id":"2169614","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2169614"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697375","reference_id":"697375","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697375"},{"reference_url":"https://usn.ubuntu.com/1694-1/","reference_id":"USN-1694-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1694-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102373?format=json","purl":"pkg:deb/debian/rpm@4.10.1-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.10.1-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2012-6088"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wzqg-dpn3-aqbn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/108178?format=json","vulnerability_id":"VCID-xyvy-8nk6-73ac","summary":"security update","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8118.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8118.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8118","reference_id":"","reference_type":"","scores":[{"value":"0.1118","scoring_system":"epss","scoring_elements":"0.93663","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8118"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6435","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6435"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8118","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8118"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168715","reference_id":"1168715","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168715"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773101","reference_id":"773101","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773101"},{"reference_url":"https://security.gentoo.org/glsa/201811-22","reference_id":"GLSA-201811-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201811-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1976","reference_id":"RHSA-2014:1976","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1976"},{"reference_url":"https://usn.ubuntu.com/2479-1/","reference_id":"USN-2479-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2479-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/102374?format=json","purl":"pkg:deb/debian/rpm@4.11.3-1.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.11.3-1.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102365?format=json","purl":"pkg:deb/debian/rpm@4.16.1.2%2Bdfsg1-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4txx-gj3c-g7b6"},{"vulnerability":"VCID-7d9h-eps9-eyhu"},{"vulnerability":"VCID-atab-m8fr-ybgz"},{"vulnerability":"VCID-bn8g-a2zy-8yew"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.16.1.2%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102363?format=json","purl":"pkg:deb/debian/rpm@4.18.0%2Bdfsg-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.18.0%252Bdfsg-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102367?format=json","purl":"pkg:deb/debian/rpm@4.20.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@4.20.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/102366?format=json","purl":"pkg:deb/debian/rpm@6.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8118"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xyvy-8nk6-73ac"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/rpm@6.0.1-1%3Fdistro=trixie"}