{"url":"http://public2.vulnerablecode.io/api/packages/106275?format=json","purl":"pkg:deb/debian/uim@1:0.4.6beta2-1?distro=trixie","type":"deb","namespace":"debian","name":"uim","version":"1:0.4.6beta2-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1:0.4.6beta2-1","latest_non_vulnerable_version":"1:1.9.6-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200009?format=json","vulnerability_id":"VCID-623y-yzqy-17dy","summary":"uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-0503","reference_id":"","reference_type":"","scores":[{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21161","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-0503"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0503","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0503"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106275?format=json","purl":"pkg:deb/debian/uim@1:0.4.6beta2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/uim@1:0.4.6beta2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106276?format=json","purl":"pkg:deb/debian/uim@1:1.8.8-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/uim@1:1.8.8-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106274?format=json","purl":"pkg:deb/debian/uim@1:1.8.8-9.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/uim@1:1.8.8-9.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106277?format=json","purl":"pkg:deb/debian/uim@1:1.9.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/uim@1:1.9.6-1%3Fdistro=trixie"}],"aliases":["CVE-2005-0503"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-623y-yzqy-17dy"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/uim@1:0.4.6beta2-1%3Fdistro=trixie"}