Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/106967?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "type": "deb", "namespace": "debian", "name": "w3m", "version": "0.5.3+git20230121-2.1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "0.5.3+git20230121-2.3", "latest_non_vulnerable_version": "0.5.3+git20230121-2.3", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184690?format=api", "vulnerability_id": "VCID-1ady-fdug-9bcv", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9430.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9430.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9430", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00758", "scoring_system": "epss", "scoring_elements": "0.73743", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00758", "scoring_system": "epss", "scoring_elements": "0.73817", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00758", "scoring_system": "epss", "scoring_elements": "0.73833", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00758", "scoring_system": "epss", "scoring_elements": "0.73832", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9430" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9430", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9430" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399685", "reference_id": "1399685", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399685" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9430" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1ady-fdug-9bcv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2162?format=api", "vulnerability_id": "VCID-29fk-mnbk-kyfs", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9628.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9628.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9628", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.7348", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73554", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73569", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73567", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9628" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9628", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9628" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399730", "reference_id": "1399730", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399730" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9628" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-29fk-mnbk-kyfs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184695?format=api", "vulnerability_id": "VCID-2f82-g7ee-ukh8", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9436.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9436.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9436", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01359", "scoring_system": "epss", "scoring_elements": "0.80565", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01359", "scoring_system": "epss", "scoring_elements": "0.80626", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01359", "scoring_system": "epss", "scoring_elements": "0.80638", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01359", "scoring_system": "epss", "scoring_elements": "0.80629", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9436" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9436", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9436" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399695", "reference_id": "1399695", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399695" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9436" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2f82-g7ee-ukh8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2161?format=api", "vulnerability_id": "VCID-48t6-8swh-hfd2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9627.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9627.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9627", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01132", "scoring_system": "epss", "scoring_elements": "0.78752", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01132", "scoring_system": "epss", "scoring_elements": "0.78818", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01132", "scoring_system": "epss", "scoring_elements": "0.78835", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01132", "scoring_system": "epss", "scoring_elements": "0.78831", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9627" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9627", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9627" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399728", "reference_id": "1399728", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399728" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9627" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-48t6-8swh-hfd2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2167?format=api", "vulnerability_id": "VCID-4jac-w9ss-sbb2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9633.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9633.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9633", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.73665", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.7374", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.73757", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.73755", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9633" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9633", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9633" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399740", "reference_id": "1399740", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399740" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9633" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4jac-w9ss-sbb2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65164?format=api", "vulnerability_id": "VCID-5wgm-w7y2-d7g4", "summary": "An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9441.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9441.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9441", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00892", "scoring_system": "epss", "scoring_elements": "0.76097", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00892", "scoring_system": "epss", "scoring_elements": "0.7609", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00892", "scoring_system": "epss", "scoring_elements": "0.76018", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00892", "scoring_system": "epss", "scoring_elements": "0.76103", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9441" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9441", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9441" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399705", "reference_id": "1399705", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399705" }, { "reference_url": "https://security.gentoo.org/glsa/201701-08", "reference_id": "201701-08", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/" } ], "url": "https://security.gentoo.org/glsa/201701-08" }, { "reference_url": "https://github.com/tats/w3m/issues/24", "reference_id": "24", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/" } ], "url": "https://github.com/tats/w3m/issues/24" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/11/18/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2016/11/18/3" }, { "reference_url": "http://www.securityfocus.com/bid/94407", "reference_id": "94407", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/" } ], "url": "http://www.securityfocus.com/bid/94407" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://github.com/tats/w3m/blob/master/ChangeLog", "reference_id": "ChangeLog", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/" } ], "url": "https://github.com/tats/w3m/blob/master/ChangeLog" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9441" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5wgm-w7y2-d7g4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65155?format=api", "vulnerability_id": "VCID-6ugy-rxst-jfb5", "summary": "An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9428.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9428.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9428", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.82157", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.8215", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.82087", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.82148", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9428" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9428" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399667", "reference_id": "1399667", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399667" }, { "reference_url": "https://security.gentoo.org/glsa/201701-08", "reference_id": "201701-08", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/" } ], "url": "https://security.gentoo.org/glsa/201701-08" }, { "reference_url": "https://github.com/tats/w3m/issues/26", "reference_id": "26", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/" } ], "url": "https://github.com/tats/w3m/issues/26" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/11/18/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2016/11/18/3" }, { "reference_url": "http://www.securityfocus.com/bid/94407", "reference_id": "94407", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/" } ], "url": "http://www.securityfocus.com/bid/94407" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://github.com/tats/w3m/blob/master/ChangeLog", "reference_id": "ChangeLog", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/" } ], "url": "https://github.com/tats/w3m/blob/master/ChangeLog" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9428" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ugy-rxst-jfb5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65154?format=api", "vulnerability_id": "VCID-7qnk-cm5b-akdj", "summary": "An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) and possibly memory corruption via a crafted HTML page.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9437.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9437.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9437", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0061", "scoring_system": "epss", "scoring_elements": "0.7034", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0061", "scoring_system": "epss", "scoring_elements": "0.70329", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0061", "scoring_system": "epss", "scoring_elements": "0.70238", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0061", "scoring_system": "epss", "scoring_elements": "0.70342", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9437" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399697", "reference_id": "1399697", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399697" }, { "reference_url": "https://github.com/tats/w3m/issues/17", "reference_id": "17", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/" } ], "url": "https://github.com/tats/w3m/issues/17" }, { "reference_url": "https://security.gentoo.org/glsa/201701-08", "reference_id": "201701-08", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/" } ], "url": "https://security.gentoo.org/glsa/201701-08" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/11/18/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2016/11/18/3" }, { "reference_url": "http://www.securityfocus.com/bid/94407", "reference_id": "94407", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/" } ], "url": "http://www.securityfocus.com/bid/94407" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://github.com/tats/w3m/blob/master/ChangeLog", "reference_id": "ChangeLog", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/" } ], "url": "https://github.com/tats/w3m/blob/master/ChangeLog" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9437" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7qnk-cm5b-akdj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184699?format=api", "vulnerability_id": "VCID-82rr-rq2t-xfa5", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9443.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9443.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9443", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72698", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72775", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.7279", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72787", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9443" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9443", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9443" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399710", "reference_id": "1399710", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399710" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9443" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-82rr-rq2t-xfa5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65158?format=api", "vulnerability_id": "VCID-84j6-91vh-nbg1", "summary": "The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to <dd> tags.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9435.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9435.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9435", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0141", "scoring_system": "epss", "scoring_elements": "0.80924", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0141", "scoring_system": "epss", "scoring_elements": "0.80994", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0141", "scoring_system": "epss", "scoring_elements": "0.80984", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0141", "scoring_system": "epss", "scoring_elements": "0.80985", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9435" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9435", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9435" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399694", "reference_id": "1399694", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399694" }, { "reference_url": "https://github.com/tats/w3m/issues/16", "reference_id": "16", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/" } ], "url": "https://github.com/tats/w3m/issues/16" }, { "reference_url": "https://security.gentoo.org/glsa/201701-08", "reference_id": "201701-08", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/" } ], "url": "https://security.gentoo.org/glsa/201701-08" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/11/18/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2016/11/18/3" }, { "reference_url": "https://github.com/tats/w3m/commit/33509cc81ec5f2ba44eb6fd98bd5c1b5873e46bd", "reference_id": "33509cc81ec5f2ba44eb6fd98bd5c1b5873e46bd", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/" } ], "url": "https://github.com/tats/w3m/commit/33509cc81ec5f2ba44eb6fd98bd5c1b5873e46bd" }, { "reference_url": "http://www.securityfocus.com/bid/94407", "reference_id": "94407", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/" } ], "url": "http://www.securityfocus.com/bid/94407" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-12/msg00084.html", "reference_id": "msg00084.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/" } ], "url": "http://lists.opensuse.org/opensuse-updates/2016-12/msg00084.html" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9435" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-84j6-91vh-nbg1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5665?format=api", "vulnerability_id": "VCID-8x9g-r3sd-r7g9", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6196.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6196.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6196", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00666", "scoring_system": "epss", "scoring_elements": "0.71791", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00666", "scoring_system": "epss", "scoring_elements": "0.71805", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00666", "scoring_system": "epss", "scoring_elements": "0.71802", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0067", "scoring_system": "epss", "scoring_elements": "0.71824", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6196" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6196", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6196" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539157", "reference_id": "1539157", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539157" }, { "reference_url": "https://usn.ubuntu.com/3555-1/", "reference_id": "USN-3555-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3555-1/" }, { "reference_url": "https://usn.ubuntu.com/3555-2/", "reference_id": "USN-3555-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3555-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106972?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-36?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-36%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2018-6196" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8x9g-r3sd-r7g9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/179554?format=api", "vulnerability_id": "VCID-bd6x-1swk-pqf8", "summary": "An error in the hostname matching of w3m might enable remote\n attackers to conduct man-in-the-middle attacks.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2074.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2074.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2074", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01841", "scoring_system": "epss", "scoring_elements": "0.83373", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01841", "scoring_system": "epss", "scoring_elements": "0.83434", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01841", "scoring_system": "epss", "scoring_elements": "0.83443", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01841", "scoring_system": "epss", "scoring_elements": "0.83439", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-2074" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2074", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2074" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=587445", "reference_id": "587445", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=587445" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=604855", "reference_id": "604855", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=604855" }, { "reference_url": "https://security.gentoo.org/glsa/201210-01", "reference_id": "GLSA-201210-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201210-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0565", "reference_id": "RHSA-2010:0565", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0565" }, { "reference_url": "https://usn.ubuntu.com/967-1/", "reference_id": "USN-967-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/967-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106969?format=api", "purl": "pkg:deb/debian/w3m@0.5.2-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.2-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-2074" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bd6x-1swk-pqf8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184698?format=api", "vulnerability_id": "VCID-dpk6-bf5f-8bd8", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9442.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9442.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9442", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.73915", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.73989", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.74004", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.74003", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9442" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9442", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9442" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399707", "reference_id": "1399707", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399707" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9442" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dpk6-bf5f-8bd8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15858?format=api", "vulnerability_id": "VCID-dqmq-v7am-3yf3", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4255", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06105", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06128", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06122", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.0611", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-4255" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4255", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4255" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059265", "reference_id": "1059265", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059265" }, { "reference_url": "https://usn.ubuntu.com/6580-1/", "reference_id": "USN-6580-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6580-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-4255" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dqmq-v7am-3yf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/199424?format=api", "vulnerability_id": "VCID-dyzb-eta6-1kaj", "summary": "w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1348.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1348.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2002-1348", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01658", "scoring_system": "epss", "scoring_elements": "0.8246", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01658", "scoring_system": "epss", "scoring_elements": "0.82522", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01658", "scoring_system": "epss", "scoring_elements": "0.82531", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01658", "scoring_system": "epss", "scoring_elements": "0.82526", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2002-1348" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1348", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1348" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616881", "reference_id": "1616881", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616881" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:044", "reference_id": "RHSA-2003:044", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:044" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:045", "reference_id": "RHSA-2003:045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:045" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106964?format=api", "purl": "pkg:deb/debian/w3m@0.3.2.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.3.2.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2002-1348" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dyzb-eta6-1kaj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2159?format=api", "vulnerability_id": "VCID-g29z-425f-z3dv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9625.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9625.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9625", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.73755", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.73665", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.7374", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00753", "scoring_system": "epss", "scoring_elements": "0.73757", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9625" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9625", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9625" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/11/24/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T16:26:39Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2016/11/24/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399720", "reference_id": "1399720", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399720" }, { "reference_url": "https://github.com/tats/w3m/issues/36", "reference_id": "36", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T16:26:39Z/" } ], "url": "https://github.com/tats/w3m/issues/36" }, { "reference_url": "https://github.com/tats/w3m/blob/master/ChangeLog", "reference_id": "ChangeLog", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T16:26:39Z/" } ], "url": "https://github.com/tats/w3m/blob/master/ChangeLog" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9625" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g29z-425f-z3dv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184691?format=api", "vulnerability_id": "VCID-g8rs-ecbe-suek", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9431.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9431.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9431", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71345", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71433", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71445", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71444", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9431" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9431", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9431" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399687", "reference_id": "1399687", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399687" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9431" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g8rs-ecbe-suek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2166?format=api", "vulnerability_id": "VCID-h7da-vg8u-w7ac", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00707", "scoring_system": "epss", "scoring_elements": "0.72624", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00707", "scoring_system": "epss", "scoring_elements": "0.72701", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00707", "scoring_system": "epss", "scoring_elements": "0.72716", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00707", "scoring_system": "epss", "scoring_elements": "0.72714", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9632" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399739", "reference_id": "1399739", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399739" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9632" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h7da-vg8u-w7ac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2111?format=api", "vulnerability_id": "VCID-hj46-7364-gkhu", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9439.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9439.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9439", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.73915", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.73989", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.74004", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00767", "scoring_system": "epss", "scoring_elements": "0.74003", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9439" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9439", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9439" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399701", "reference_id": "1399701", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399701" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844726", "reference_id": "844726", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844726" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9439" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hj46-7364-gkhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2157?format=api", "vulnerability_id": "VCID-jmk7-z24y-v3es", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9623.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01187", "scoring_system": "epss", "scoring_elements": "0.79216", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01187", "scoring_system": "epss", "scoring_elements": "0.7928", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01187", "scoring_system": "epss", "scoring_elements": "0.79294", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01187", "scoring_system": "epss", "scoring_elements": "0.79289", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9623" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9623", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9623" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399715", "reference_id": "1399715", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399715" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9623" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jmk7-z24y-v3es" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2164?format=api", "vulnerability_id": "VCID-k3a5-8nex-wua6", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9630.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9630.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9630", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01112", "scoring_system": "epss", "scoring_elements": "0.78571", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01112", "scoring_system": "epss", "scoring_elements": "0.78637", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01112", "scoring_system": "epss", "scoring_elements": "0.78654", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01112", "scoring_system": "epss", "scoring_elements": "0.78649", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9630" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9630" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399737", "reference_id": "1399737", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399737" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9630" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k3a5-8nex-wua6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184692?format=api", "vulnerability_id": "VCID-k7rp-qsxe-xyfr", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9432.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9432.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9432", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76986", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.77057", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.7707", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.77064", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9432" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9432", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9432" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399689", "reference_id": "1399689", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399689" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9432" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k7rp-qsxe-xyfr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184686?format=api", "vulnerability_id": "VCID-kaup-ddrt-1ue8", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9424.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9424.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9424", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00993", "scoring_system": "epss", "scoring_elements": "0.77336", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00993", "scoring_system": "epss", "scoring_elements": "0.77407", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00993", "scoring_system": "epss", "scoring_elements": "0.77422", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00993", "scoring_system": "epss", "scoring_elements": "0.77413", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9424" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399665", "reference_id": "1399665", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399665" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9424" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kaup-ddrt-1ue8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2156?format=api", "vulnerability_id": "VCID-kd7w-17zq-zfgq", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9622.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9622.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9622", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75743", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75814", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75827", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75823", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9622" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9622", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9622" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399713", "reference_id": "1399713", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399713" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9622" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kd7w-17zq-zfgq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2160?format=api", "vulnerability_id": "VCID-km4n-n39b-4fdh", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9626.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9626.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9626", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76786", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76856", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.7687", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76863", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9626" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9626", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9626" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399723", "reference_id": "1399723", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399723" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9626" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-km4n-n39b-4fdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2165?format=api", "vulnerability_id": "VCID-kxxv-mh3t-bfbh", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9631.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9631.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9631", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.72427", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.72508", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.72522", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00698", "scoring_system": "epss", "scoring_elements": "0.72518", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9631" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9631", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9631" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399734", "reference_id": "1399734", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399734" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9631" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kxxv-mh3t-bfbh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/178519?format=api", "vulnerability_id": "VCID-m8y2-bhe8-3qbx", "summary": "w3m does not correctly handle format string specifiers in SSL certificates.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6772.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6772.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6772", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.13757", "scoring_system": "epss", "scoring_elements": "0.9444", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.13757", "scoring_system": "epss", "scoring_elements": "0.94459", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.13757", "scoring_system": "epss", "scoring_elements": "0.94465", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.13757", "scoring_system": "epss", "scoring_elements": "0.94466", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6772" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6772", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6772" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=221484", "reference_id": "221484", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=221484" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=404564", "reference_id": "404564", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=404564" }, { "reference_url": "https://security.gentoo.org/glsa/200701-06", "reference_id": "GLSA-200701-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200701-06" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106968?format=api", "purl": "pkg:deb/debian/w3m@0.5.1-5.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.1-5.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-6772" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m8y2-bhe8-3qbx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/199418?format=api", "vulnerability_id": "VCID-ne6t-jjq2-vfgt", "summary": "Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1335.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1335.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2002-1335", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01398", "scoring_system": "epss", "scoring_elements": "0.80823", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01398", "scoring_system": "epss", "scoring_elements": "0.80883", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01398", "scoring_system": "epss", "scoring_elements": "0.80893", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01398", "scoring_system": "epss", "scoring_elements": "0.80885", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2002-1335" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1335", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1335" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616875", "reference_id": "1616875", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:044", "reference_id": "RHSA-2003:044", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:044" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2003:045", "reference_id": "RHSA-2003:045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2003:045" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106964?format=api", "purl": "pkg:deb/debian/w3m@0.3.2.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.3.2.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2002-1335" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ne6t-jjq2-vfgt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184687?format=api", "vulnerability_id": "VCID-nfnk-hcpq-93cx", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9425.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9425.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9425", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.82087", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.82148", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.82157", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01594", "scoring_system": "epss", "scoring_elements": "0.8215", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9425" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399666", "reference_id": "1399666", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399666" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9425" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nfnk-hcpq-93cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184685?format=api", "vulnerability_id": "VCID-njk6-tcat-e3aa", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9423.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9423.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9423", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77884", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77953", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77967", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.7796", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9423" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399664", "reference_id": "1399664", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399664" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9423" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-njk6-tcat-e3aa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184688?format=api", "vulnerability_id": "VCID-nqtf-1144-pufe", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9426.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9426.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9426", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.76373", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.76444", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.76458", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00916", "scoring_system": "epss", "scoring_elements": "0.76453", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9426" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9426", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9426" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399668", "reference_id": "1399668", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399668" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9426" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nqtf-1144-pufe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/65160?format=api", "vulnerability_id": "VCID-nzxj-xgr9-pbbs", "summary": "An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9422.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9422.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9422", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.7796", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77953", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77884", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01043", "scoring_system": "epss", "scoring_elements": "0.77967", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9422" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399662", "reference_id": "1399662", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399662" }, { "reference_url": "https://security.gentoo.org/glsa/201701-08", "reference_id": "201701-08", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/" } ], "url": "https://security.gentoo.org/glsa/201701-08" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/11/18/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2016/11/18/3" }, { "reference_url": "https://github.com/tats/w3m/issues/8", "reference_id": "8", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/" } ], "url": "https://github.com/tats/w3m/issues/8" }, { "reference_url": "http://www.securityfocus.com/bid/94407", "reference_id": "94407", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/" } ], "url": "http://www.securityfocus.com/bid/94407" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://github.com/tats/w3m/blob/master/ChangeLog", "reference_id": "ChangeLog", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/" } ], "url": "https://github.com/tats/w3m/blob/master/ChangeLog" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9422" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nzxj-xgr9-pbbs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5667?format=api", "vulnerability_id": "VCID-pk42-k9t8-yqe1", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6198.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6198.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6198", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.2421", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24406", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24416", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.244", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6198" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6198", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6198" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539127", "reference_id": "1539127", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539127" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888097", "reference_id": "888097", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888097" }, { "reference_url": "https://usn.ubuntu.com/3555-1/", "reference_id": "USN-3555-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3555-1/" }, { "reference_url": "https://usn.ubuntu.com/3555-2/", "reference_id": "USN-3555-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3555-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106972?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-36?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-36%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2018-6198" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pk42-k9t8-yqe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184697?format=api", "vulnerability_id": "VCID-ramg-vm56-xqb7", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9440.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9440.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9440", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79375", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79442", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79457", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79453", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9440" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9440", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9440" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399702", "reference_id": "1399702", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399702" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9440" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ramg-vm56-xqb7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184689?format=api", "vulnerability_id": "VCID-rk2r-sh3s-nkf5", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9429.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9429.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9429", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00844", "scoring_system": "epss", "scoring_elements": "0.7522", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00844", "scoring_system": "epss", "scoring_elements": "0.7529", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00844", "scoring_system": "epss", "scoring_elements": "0.75304", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00844", "scoring_system": "epss", "scoring_elements": "0.753", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9429" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9429", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9429" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399682", "reference_id": "1399682", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399682" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9429" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rk2r-sh3s-nkf5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5666?format=api", "vulnerability_id": "VCID-sfjg-dc5c-nuab", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6197.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6197.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6197", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63615", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63717", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63731", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63729", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6197" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6197", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6197" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539151", "reference_id": "1539151", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1539151" }, { "reference_url": "https://usn.ubuntu.com/3555-1/", "reference_id": "USN-3555-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3555-1/" }, { "reference_url": "https://usn.ubuntu.com/3555-2/", "reference_id": "USN-3555-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3555-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106972?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-36?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-36%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2018-6197" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sfjg-dc5c-nuab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184693?format=api", "vulnerability_id": "VCID-wck7-mtmp-f3dp", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9433.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9433.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9433", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71345", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71433", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71445", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71444", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9433" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9433", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9433" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399690", "reference_id": "1399690", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399690" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9433" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wck7-mtmp-f3dp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12296?format=api", "vulnerability_id": "VCID-yrj7-qcqc-q7d9", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38223.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38223.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-38223", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34164", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34342", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34366", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34345", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-38223" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38223", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38223" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019599", "reference_id": "1019599", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019599" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2126270", "reference_id": "2126270", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2126270" }, { "reference_url": "https://usn.ubuntu.com/5796-1/", "reference_id": "USN-5796-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5796-1/" }, { "reference_url": "https://usn.ubuntu.com/5796-2/", "reference_id": "USN-5796-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5796-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106973?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-38223" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yrj7-qcqc-q7d9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184694?format=api", "vulnerability_id": "VCID-z1pe-9gdp-g3gp", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9434.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72698", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72775", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.7279", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72787", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9434" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399691", "reference_id": "1399691", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399691" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9434" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z1pe-9gdp-g3gp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184696?format=api", "vulnerability_id": "VCID-zfcs-v4tv-gygd", "summary": "Multiple vulnerabilities have been found in w3m, the worst of which\n could lead to the execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9438.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9438.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9438", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72698", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72775", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.7279", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0071", "scoring_system": "epss", "scoring_elements": "0.72787", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9438" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399699", "reference_id": "1399699", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399699" }, { "reference_url": "https://security.archlinux.org/ASA-201611-18", "reference_id": "ASA-201611-18", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201611-18" }, { "reference_url": "https://security.archlinux.org/AVG-73", "reference_id": "AVG-73", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-73" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106970?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-30?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9438" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zfcs-v4tv-gygd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2158?format=api", "vulnerability_id": "VCID-znt5-k41y-eqhy", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75743", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75814", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75827", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00877", "scoring_system": "epss", "scoring_elements": "0.75823", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399718", "reference_id": "1399718", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399718" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9624" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-znt5-k41y-eqhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2163?format=api", "vulnerability_id": "VCID-zuv1-e4qp-dfcv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9629.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9629.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9629", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73567", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.7348", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73554", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00745", "scoring_system": "epss", "scoring_elements": "0.73569", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9629" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9629", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9629" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/11/24/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:45Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2016/11/24/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399732", "reference_id": "1399732", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399732" }, { "reference_url": "https://github.com/tats/w3m/issues/40", "reference_id": "40", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:45Z/" } ], "url": "https://github.com/tats/w3m/issues/40" }, { "reference_url": "https://github.com/tats/w3m/blob/master/ChangeLog", "reference_id": "ChangeLog", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:45Z/" } ], "url": "https://github.com/tats/w3m/blob/master/ChangeLog" }, { "reference_url": "https://usn.ubuntu.com/3214-1/", "reference_id": "USN-3214-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3214-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/106971?format=api", "purl": "pkg:deb/debian/w3m@0.5.3-33?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106965?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106963?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dqmq-v7am-3yf3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106967?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/106966?format=api", "purl": "pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9629" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zuv1-e4qp-dfcv" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie" }