{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","type":"deb","namespace":"debian","name":"vlc","version":"0","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"0.8.4.debian-2","latest_non_vulnerable_version":"3.0.23-3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177135?format=json","vulnerability_id":"VCID-4uak-zgjn-5bcw","summary":"Multiple vulnerabilities have been found in VLC, the worst of which\n    could lead to user-assisted execution of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5855","reference_id":"","reference_type":"","scores":[{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57367","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57499","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.5749","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5855"},{"reference_url":"https://security.gentoo.org/glsa/201411-01","reference_id":"GLSA-201411-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201411-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2012-5855"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4uak-zgjn-5bcw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175924?format=json","vulnerability_id":"VCID-5jgb-cn4y-sygm","summary":"xine-lib is vulnerable to multiple buffer overflows when processing FLAC\n    and ASF streams.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1664","reference_id":"","reference_type":"","scores":[{"value":"0.06458","scoring_system":"epss","scoring_elements":"0.91279","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06458","scoring_system":"epss","scoring_elements":"0.91309","published_at":"2026-06-12T12:55:00Z"},{"value":"0.06458","scoring_system":"epss","scoring_elements":"0.91317","published_at":"2026-06-13T12:55:00Z"},{"value":"0.06458","scoring_system":"epss","scoring_elements":"0.91314","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1664"},{"reference_url":"https://security.gentoo.org/glsa/200604-16","reference_id":"GLSA-200604-16","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200604-16"},{"reference_url":"https://security.gentoo.org/glsa/200802-12","reference_id":"GLSA-200802-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200802-12"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/1641.pl","reference_id":"OSVDB-42658;CVE-2008-1110;OSVDB-25004;CVE-2006-1664;OSVDB-24581","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/1641.pl"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2006-1664"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5jgb-cn4y-sygm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177137?format=json","vulnerability_id":"VCID-5w2n-hfha-vbcn","summary":"Multiple vulnerabilities have been found in VLC, the worst of which\n    could lead to user-assisted execution of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6934","reference_id":"","reference_type":"","scores":[{"value":"0.03978","scoring_system":"epss","scoring_elements":"0.88663","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03978","scoring_system":"epss","scoring_elements":"0.88701","published_at":"2026-06-12T12:55:00Z"},{"value":"0.03978","scoring_system":"epss","scoring_elements":"0.88708","published_at":"2026-06-13T12:55:00Z"},{"value":"0.03978","scoring_system":"epss","scoring_elements":"0.88706","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6934"},{"reference_url":"https://security.gentoo.org/glsa/201411-01","reference_id":"GLSA-201411-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201411-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2013-6934"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5w2n-hfha-vbcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179716?format=json","vulnerability_id":"VCID-7z4x-gy88-qyg5","summary":"Multiple vulnerabilities in xine-lib might result in the remote execution\n    of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0698","reference_id":"","reference_type":"","scores":[{"value":"0.02442","scoring_system":"epss","scoring_elements":"0.85509","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02442","scoring_system":"epss","scoring_elements":"0.8556","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02442","scoring_system":"epss","scoring_elements":"0.8557","published_at":"2026-06-13T12:55:00Z"},{"value":"0.02442","scoring_system":"epss","scoring_elements":"0.85562","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0698"},{"reference_url":"https://security.gentoo.org/glsa/201006-04","reference_id":"GLSA-201006-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-04"},{"reference_url":"https://usn.ubuntu.com/746-1/","reference_id":"USN-746-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/746-1/"},{"reference_url":"https://usn.ubuntu.com/763-1/","reference_id":"USN-763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2009-0698"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7z4x-gy88-qyg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179702?format=json","vulnerability_id":"VCID-a3a3-tg26-vud2","summary":"Multiple vulnerabilities in xine-lib might result in the remote execution\n    of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5235.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5235.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5235","reference_id":"","reference_type":"","scores":[{"value":"0.03478","scoring_system":"epss","scoring_elements":"0.87835","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03478","scoring_system":"epss","scoring_elements":"0.87876","published_at":"2026-06-12T12:55:00Z"},{"value":"0.03478","scoring_system":"epss","scoring_elements":"0.87883","published_at":"2026-06-13T12:55:00Z"},{"value":"0.03478","scoring_system":"epss","scoring_elements":"0.87881","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5235"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=473234","reference_id":"473234","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=473234"},{"reference_url":"https://security.gentoo.org/glsa/201006-04","reference_id":"GLSA-201006-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-04"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2008-5235"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a3a3-tg26-vud2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176047?format=json","vulnerability_id":"VCID-ac11-ar92-cfg4","summary":"xine-lib contains an exploitable buffer overflow in the VCD handling code","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1475","reference_id":"","reference_type":"","scores":[{"value":"0.05483","scoring_system":"epss","scoring_elements":"0.90417","published_at":"2026-06-11T12:55:00Z"},{"value":"0.05483","scoring_system":"epss","scoring_elements":"0.90447","published_at":"2026-06-12T12:55:00Z"},{"value":"0.05483","scoring_system":"epss","scoring_elements":"0.90456","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1475"},{"reference_url":"https://security.gentoo.org/glsa/200408-18","reference_id":"GLSA-200408-18","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200408-18"},{"reference_url":"https://security.gentoo.org/glsa/200409-30","reference_id":"GLSA-200409-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200409-30"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/386.c","reference_id":"OSVDB-10041;CVE-2004-1475","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/386.c"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2004-1475"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ac11-ar92-cfg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179717?format=json","vulnerability_id":"VCID-c3kc-mw3q-dyez","summary":"Multiple vulnerabilities in xine-lib might result in the remote execution\n    of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1274.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1274.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-1274","reference_id":"","reference_type":"","scores":[{"value":"0.03701","scoring_system":"epss","scoring_elements":"0.8822","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03701","scoring_system":"epss","scoring_elements":"0.8826","published_at":"2026-06-12T12:55:00Z"},{"value":"0.03701","scoring_system":"epss","scoring_elements":"0.88265","published_at":"2026-06-13T12:55:00Z"},{"value":"0.03701","scoring_system":"epss","scoring_elements":"0.88264","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-1274"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=495031","reference_id":"495031","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=495031"},{"reference_url":"https://security.gentoo.org/glsa/201006-04","reference_id":"GLSA-201006-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-04"},{"reference_url":"https://usn.ubuntu.com/763-1/","reference_id":"USN-763-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/763-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2009-1274"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c3kc-mw3q-dyez"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219253?format=json","vulnerability_id":"VCID-cen1-9nmp-5bhu","summary":"Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2 and earlier allows remote attackers to execute arbitrary code via crafted playlists that result in a long vcd:// URL.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1455","reference_id":"","reference_type":"","scores":[{"value":"0.04348","scoring_system":"epss","scoring_elements":"0.89177","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04348","scoring_system":"epss","scoring_elements":"0.89215","published_at":"2026-06-12T12:55:00Z"},{"value":"0.04348","scoring_system":"epss","scoring_elements":"0.89223","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1455"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2004-1455"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cen1-9nmp-5bhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219257?format=json","vulnerability_id":"VCID-cj2a-7c69-wbd2","summary":"codec\\libpng_plugin.dll in VideoLAN VLC Media Player 2.1.3 allows remote attackers to cause a denial of service (crash) via a crafted .png file, as demonstrated by a png in a .wave file.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3441","reference_id":"","reference_type":"","scores":[{"value":"0.07967","scoring_system":"epss","scoring_elements":"0.92258","published_at":"2026-06-11T12:55:00Z"},{"value":"0.07967","scoring_system":"epss","scoring_elements":"0.92285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.07967","scoring_system":"epss","scoring_elements":"0.9229","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3441"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/39177.py","reference_id":"CVE-2014-3441;OSVDB-106843","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/39177.py"},{"reference_url":"https://www.securityfocus.com/bid/67315/info","reference_id":"CVE-2014-3441;OSVDB-106843","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/67315/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2014-3441"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cj2a-7c69-wbd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179700?format=json","vulnerability_id":"VCID-d31q-9v71-qff8","summary":"Multiple vulnerabilities in xine-lib might result in the remote execution\n    of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5233","reference_id":"","reference_type":"","scores":[{"value":"0.01413","scoring_system":"epss","scoring_elements":"0.80961","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01413","scoring_system":"epss","scoring_elements":"0.81021","published_at":"2026-06-14T12:55:00Z"},{"value":"0.01413","scoring_system":"epss","scoring_elements":"0.8103","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5233"},{"reference_url":"https://security.gentoo.org/glsa/201006-04","reference_id":"GLSA-201006-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-04"},{"reference_url":"https://usn.ubuntu.com/710-1/","reference_id":"USN-710-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/710-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2008-5233"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d31q-9v71-qff8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219256?format=json","vulnerability_id":"VCID-edkv-qbpq-vkax","summary":"VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0904","reference_id":"","reference_type":"","scores":[{"value":"0.08065","scoring_system":"epss","scoring_elements":"0.92323","published_at":"2026-06-11T12:55:00Z"},{"value":"0.08065","scoring_system":"epss","scoring_elements":"0.92349","published_at":"2026-06-12T12:55:00Z"},{"value":"0.08065","scoring_system":"epss","scoring_elements":"0.92355","published_at":"2026-06-13T12:55:00Z"},{"value":"0.08065","scoring_system":"epss","scoring_elements":"0.92356","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0904"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/18309.pl","reference_id":"OSVDB-78618;CVE-2012-0904","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/18309.pl"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2012-0904"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-edkv-qbpq-vkax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/132907?format=json","vulnerability_id":"VCID-ej5n-u2d1-m3cx","summary":"A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46814","reference_id":"","reference_type":"","scores":[{"value":"0.00107","scoring_system":"epss","scoring_elements":"0.2849","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00107","scoring_system":"epss","scoring_elements":"0.28686","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00107","scoring_system":"epss","scoring_elements":"0.28711","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00107","scoring_system":"epss","scoring_elements":"0.28702","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46814"},{"reference_url":"https://www.videolan.org/security/sb-vlc3019.html","reference_id":"sb-vlc3019.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T15:15:48Z/"}],"url":"https://www.videolan.org/security/sb-vlc3019.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2023-46814"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ej5n-u2d1-m3cx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184838?format=json","vulnerability_id":"VCID-gurs-a7d8-c7e9","summary":"Multiple vulnerabilities have been found in VLC allowing remote\n    attackers to execute arbitrary code or cause Denial of Service.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9625","reference_id":"","reference_type":"","scores":[{"value":"0.01634","scoring_system":"epss","scoring_elements":"0.82325","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01634","scoring_system":"epss","scoring_elements":"0.82387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01634","scoring_system":"epss","scoring_elements":"0.82396","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01634","scoring_system":"epss","scoring_elements":"0.82391","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9625"},{"reference_url":"https://security.gentoo.org/glsa/201603-08","reference_id":"GLSA-201603-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201603-08"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2014-9625"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gurs-a7d8-c7e9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219255?format=json","vulnerability_id":"VCID-hkjw-9cb8-9ubc","summary":"Stack-based buffer overflow in the Win32AddConnection function in modules/access/smb.c in VideoLAN VLC media player 0.9.9, when running on Microsoft Windows, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long smb URI in a playlist file.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2484","reference_id":"","reference_type":"","scores":[{"value":"0.71229","scoring_system":"epss","scoring_elements":"0.98735","published_at":"2026-06-11T12:55:00Z"},{"value":"0.71229","scoring_system":"epss","scoring_elements":"0.9874","published_at":"2026-06-12T12:55:00Z"},{"value":"0.71229","scoring_system":"epss","scoring_elements":"0.98741","published_at":"2026-06-13T12:55:00Z"},{"value":"0.71229","scoring_system":"epss","scoring_elements":"0.98742","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2484"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows_x86/local/16678.rb","reference_id":"CVE-2009-2484;OSVDB-55509","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows_x86/local/16678.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/9029.rb","reference_id":"OSVDB-55509;CVE-2009-2484","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/9029.rb"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2009-2484"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hkjw-9cb8-9ubc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179715?format=json","vulnerability_id":"VCID-j46v-mtq4-akg1","summary":"Multiple vulnerabilities in xine-lib might result in the remote execution\n    of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5248","reference_id":"","reference_type":"","scores":[{"value":"0.00564","scoring_system":"epss","scoring_elements":"0.68875","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00564","scoring_system":"epss","scoring_elements":"0.68968","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00564","scoring_system":"epss","scoring_elements":"0.6898","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00564","scoring_system":"epss","scoring_elements":"0.68975","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5248"},{"reference_url":"https://security.gentoo.org/glsa/201006-04","reference_id":"GLSA-201006-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-04"},{"reference_url":"https://usn.ubuntu.com/710-1/","reference_id":"USN-710-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/710-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2008-5248"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j46v-mtq4-akg1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179172?format=json","vulnerability_id":"VCID-jja6-7fx2-ykf6","summary":"xine-lib contains several vulnerabilities potentially allowing the\n    execution of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1476","reference_id":"","reference_type":"","scores":[{"value":"0.02053","scoring_system":"epss","scoring_elements":"0.84252","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02053","scoring_system":"epss","scoring_elements":"0.84307","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02053","scoring_system":"epss","scoring_elements":"0.84315","published_at":"2026-06-13T12:55:00Z"},{"value":"0.02053","scoring_system":"epss","scoring_elements":"0.8431","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1476"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1476","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1476"},{"reference_url":"https://security.gentoo.org/glsa/200409-30","reference_id":"GLSA-200409-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200409-30"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2004-1476"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jja6-7fx2-ykf6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179713?format=json","vulnerability_id":"VCID-kjep-6bq1-77eg","summary":"Multiple vulnerabilities in xine-lib might result in the remote execution\n    of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5246","reference_id":"","reference_type":"","scores":[{"value":"0.04348","scoring_system":"epss","scoring_elements":"0.89178","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04348","scoring_system":"epss","scoring_elements":"0.89215","published_at":"2026-06-12T12:55:00Z"},{"value":"0.04348","scoring_system":"epss","scoring_elements":"0.89223","published_at":"2026-06-13T12:55:00Z"},{"value":"0.04348","scoring_system":"epss","scoring_elements":"0.89224","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5246"},{"reference_url":"https://security.gentoo.org/glsa/201006-04","reference_id":"GLSA-201006-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-04"},{"reference_url":"https://usn.ubuntu.com/710-1/","reference_id":"USN-710-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/710-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2008-5246"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kjep-6bq1-77eg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177116?format=json","vulnerability_id":"VCID-mfrp-a8wm-5bfy","summary":"Multiple vulnerabilities have been found in VLC, the worst of which\n    could lead to user-assisted execution of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-3124","reference_id":"","reference_type":"","scores":[{"value":"0.08392","scoring_system":"epss","scoring_elements":"0.92502","published_at":"2026-06-11T12:55:00Z"},{"value":"0.08392","scoring_system":"epss","scoring_elements":"0.92527","published_at":"2026-06-12T12:55:00Z"},{"value":"0.08392","scoring_system":"epss","scoring_elements":"0.9253","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-3124"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/14750.txt","reference_id":"CVE-2010-3124;OSVDB-67492","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/14750.txt"},{"reference_url":"https://security.gentoo.org/glsa/201411-01","reference_id":"GLSA-201411-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201411-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2010-3124"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mfrp-a8wm-5bfy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219252?format=json","vulnerability_id":"VCID-weww-xdhv-3qct","summary":"Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1300","reference_id":"","reference_type":"","scores":[{"value":"0.09687","scoring_system":"epss","scoring_elements":"0.93093","published_at":"2026-06-11T12:55:00Z"},{"value":"0.09687","scoring_system":"epss","scoring_elements":"0.93116","published_at":"2026-06-12T12:55:00Z"},{"value":"0.09687","scoring_system":"epss","scoring_elements":"0.93118","published_at":"2026-06-13T12:55:00Z"},{"value":"0.09687","scoring_system":"epss","scoring_elements":"0.93117","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1300"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/24978.txt","reference_id":"CVE-2004-1300;OSVDB-12474","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/24978.txt"},{"reference_url":"https://www.securityfocus.com/bid/11969/info","reference_id":"CVE-2004-1300;OSVDB-12474","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/11969/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2004-1300"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-weww-xdhv-3qct"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177132?format=json","vulnerability_id":"VCID-yjh7-e2f4-eyfb","summary":"Multiple vulnerabilities have been found in VLC, the worst of which\n    could lead to user-assisted execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2396.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2396.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2396","reference_id":"","reference_type":"","scores":[{"value":"0.02037","scoring_system":"epss","scoring_elements":"0.84194","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02037","scoring_system":"epss","scoring_elements":"0.84249","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02037","scoring_system":"epss","scoring_elements":"0.84257","published_at":"2026-06-13T12:55:00Z"},{"value":"0.02037","scoring_system":"epss","scoring_elements":"0.84252","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2396"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=818583","reference_id":"818583","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=818583"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/18757.txt","reference_id":"CVE-2012-2396;OSVDB-81224","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/18757.txt"},{"reference_url":"https://security.gentoo.org/glsa/201411-01","reference_id":"GLSA-201411-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201411-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2012-2396"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yjh7-e2f4-eyfb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219254?format=json","vulnerability_id":"VCID-zsgu-y41a-8kaw","summary":"A certain ActiveX control in axvlc.dll in VideoLAN VLC 0.8.6 before 0.8.6d allows remote attackers to execute arbitrary code via crafted arguments to the (1) addTarget, (2) getVariable, or (3) setVariable function, resulting from a \"bad initialized pointer,\" aka a \"recursive plugin release vulnerability.\"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6262","reference_id":"","reference_type":"","scores":[{"value":"0.22802","scoring_system":"epss","scoring_elements":"0.96006","published_at":"2026-06-11T12:55:00Z"},{"value":"0.22802","scoring_system":"epss","scoring_elements":"0.96017","published_at":"2026-06-12T12:55:00Z"},{"value":"0.22802","scoring_system":"epss","scoring_elements":"0.96018","published_at":"2026-06-13T12:55:00Z"},{"value":"0.22802","scoring_system":"epss","scoring_elements":"0.96022","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6262"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/4688.html","reference_id":"OSVDB-42192;CVE-2007-6262","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/4688.html"},{"reference_url":"http://www.coresecurity.com/?action=item&id=2035","reference_id":"OSVDB-42192;CVE-2007-6262","reference_type":"exploit","scores":[],"url":"http://www.coresecurity.com/?action=item&id=2035"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106844?format=json","purl":"pkg:deb/debian/vlc@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106845?format=json","purl":"pkg:deb/debian/vlc@3.0.21-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.21-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106843?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106847?format=json","purl":"pkg:deb/debian/vlc@3.0.23-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106846?format=json","purl":"pkg:deb/debian/vlc@3.0.23-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@3.0.23-3%3Fdistro=trixie"}],"aliases":["CVE-2007-6262"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zsgu-y41a-8kaw"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/vlc@0%3Fdistro=trixie"}