{"url":"http://public2.vulnerablecode.io/api/packages/106383?format=json","purl":"pkg:deb/debian/unicon@3.0.4%2Bdfsg1-7.1?distro=trixie","type":"deb","namespace":"debian","name":"unicon","version":"3.0.4+dfsg1-7.1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200695?format=json","vulnerability_id":"VCID-uyqr-19wn-zbh6","summary":"Multiple stack-based buffer overflows in (1) CCE_pinyin.c and (2) xl_pinyin.c in ImmModules/cce/ in unicon-imc2 3.0.4, as used by zhcon and other applications, allow local users to gain privileges via a long HOME environment variable.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2835","reference_id":"","reference_type":"","scores":[{"value":"0.00056","scoring_system":"epss","scoring_elements":"0.17891","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2835"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=431336","reference_id":"431336","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=431336"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106381?format=json","purl":"pkg:deb/debian/unicon@3.0.4-12?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/unicon@3.0.4-12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106382?format=json","purl":"pkg:deb/debian/unicon@3.0.4%2Bdfsg1-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/unicon@3.0.4%252Bdfsg1-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106380?format=json","purl":"pkg:deb/debian/unicon@3.0.4%2Bdfsg1-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/unicon@3.0.4%252Bdfsg1-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106384?format=json","purl":"pkg:deb/debian/unicon@3.0.4%2Bdfsg1-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/unicon@3.0.4%252Bdfsg1-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106383?format=json","purl":"pkg:deb/debian/unicon@3.0.4%2Bdfsg1-7.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/unicon@3.0.4%252Bdfsg1-7.1%3Fdistro=trixie"}],"aliases":["CVE-2007-2835"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uyqr-19wn-zbh6"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/unicon@3.0.4%252Bdfsg1-7.1%3Fdistro=trixie"}