{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","type":"deb","namespace":"debian","name":"w3m","version":"0.5.3+git20230121-2.1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"0.5.3+git20230121-2.3","latest_non_vulnerable_version":"0.5.3+git20230121-2.3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184690?format=json","vulnerability_id":"VCID-1ady-fdug-9bcv","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9430.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9430.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9430","reference_id":"","reference_type":"","scores":[{"value":"0.00758","scoring_system":"epss","scoring_elements":"0.73743","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00758","scoring_system":"epss","scoring_elements":"0.73817","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00758","scoring_system":"epss","scoring_elements":"0.73833","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00758","scoring_system":"epss","scoring_elements":"0.73832","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9430"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9430"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399685","reference_id":"1399685","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399685"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9430"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1ady-fdug-9bcv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2162?format=json","vulnerability_id":"VCID-29fk-mnbk-kyfs","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9628.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9628.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9628","reference_id":"","reference_type":"","scores":[{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.7348","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73554","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73569","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73567","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9628"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399730","reference_id":"1399730","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399730"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9628"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-29fk-mnbk-kyfs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184695?format=json","vulnerability_id":"VCID-2f82-g7ee-ukh8","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9436.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9436.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9436","reference_id":"","reference_type":"","scores":[{"value":"0.01359","scoring_system":"epss","scoring_elements":"0.80565","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01359","scoring_system":"epss","scoring_elements":"0.80626","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01359","scoring_system":"epss","scoring_elements":"0.80638","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01359","scoring_system":"epss","scoring_elements":"0.80629","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9436"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9436","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9436"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399695","reference_id":"1399695","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399695"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9436"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2f82-g7ee-ukh8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2161?format=json","vulnerability_id":"VCID-48t6-8swh-hfd2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9627.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9627.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9627","reference_id":"","reference_type":"","scores":[{"value":"0.01132","scoring_system":"epss","scoring_elements":"0.78752","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01132","scoring_system":"epss","scoring_elements":"0.78818","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01132","scoring_system":"epss","scoring_elements":"0.78835","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01132","scoring_system":"epss","scoring_elements":"0.78831","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9627"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9627","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9627"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399728","reference_id":"1399728","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399728"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9627"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-48t6-8swh-hfd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2167?format=json","vulnerability_id":"VCID-4jac-w9ss-sbb2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9633.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9633.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9633","reference_id":"","reference_type":"","scores":[{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73665","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.7374","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73757","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73755","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9633"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9633","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9633"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399740","reference_id":"1399740","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399740"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9633"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4jac-w9ss-sbb2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65164?format=json","vulnerability_id":"VCID-5wgm-w7y2-d7g4","summary":"An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9441.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9441.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9441","reference_id":"","reference_type":"","scores":[{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.76097","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.7609","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.76018","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.76103","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9441"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9441","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9441"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399705","reference_id":"1399705","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399705"},{"reference_url":"https://security.gentoo.org/glsa/201701-08","reference_id":"201701-08","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/"}],"url":"https://security.gentoo.org/glsa/201701-08"},{"reference_url":"https://github.com/tats/w3m/issues/24","reference_id":"24","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/"}],"url":"https://github.com/tats/w3m/issues/24"},{"reference_url":"http://www.openwall.com/lists/oss-security/2016/11/18/3","reference_id":"3","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/"}],"url":"http://www.openwall.com/lists/oss-security/2016/11/18/3"},{"reference_url":"http://www.securityfocus.com/bid/94407","reference_id":"94407","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/"}],"url":"http://www.securityfocus.com/bid/94407"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://github.com/tats/w3m/blob/master/ChangeLog","reference_id":"ChangeLog","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:47Z/"}],"url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9441"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5wgm-w7y2-d7g4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65155?format=json","vulnerability_id":"VCID-6ugy-rxst-jfb5","summary":"An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9428.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9428.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9428","reference_id":"","reference_type":"","scores":[{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.82157","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.8215","published_at":"2026-06-14T12:55:00Z"},{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.82087","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.82148","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9428"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9428","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9428"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399667","reference_id":"1399667","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399667"},{"reference_url":"https://security.gentoo.org/glsa/201701-08","reference_id":"201701-08","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/"}],"url":"https://security.gentoo.org/glsa/201701-08"},{"reference_url":"https://github.com/tats/w3m/issues/26","reference_id":"26","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/"}],"url":"https://github.com/tats/w3m/issues/26"},{"reference_url":"http://www.openwall.com/lists/oss-security/2016/11/18/3","reference_id":"3","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/"}],"url":"http://www.openwall.com/lists/oss-security/2016/11/18/3"},{"reference_url":"http://www.securityfocus.com/bid/94407","reference_id":"94407","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/"}],"url":"http://www.securityfocus.com/bid/94407"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://github.com/tats/w3m/blob/master/ChangeLog","reference_id":"ChangeLog","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-15T17:16:57Z/"}],"url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9428"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6ugy-rxst-jfb5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65154?format=json","vulnerability_id":"VCID-7qnk-cm5b-akdj","summary":"An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) and possibly memory corruption via a crafted HTML page.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9437.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9437.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9437","reference_id":"","reference_type":"","scores":[{"value":"0.0061","scoring_system":"epss","scoring_elements":"0.7034","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0061","scoring_system":"epss","scoring_elements":"0.70329","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0061","scoring_system":"epss","scoring_elements":"0.70238","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0061","scoring_system":"epss","scoring_elements":"0.70342","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9437"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9437","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9437"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399697","reference_id":"1399697","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399697"},{"reference_url":"https://github.com/tats/w3m/issues/17","reference_id":"17","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/"}],"url":"https://github.com/tats/w3m/issues/17"},{"reference_url":"https://security.gentoo.org/glsa/201701-08","reference_id":"201701-08","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/"}],"url":"https://security.gentoo.org/glsa/201701-08"},{"reference_url":"http://www.openwall.com/lists/oss-security/2016/11/18/3","reference_id":"3","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/"}],"url":"http://www.openwall.com/lists/oss-security/2016/11/18/3"},{"reference_url":"http://www.securityfocus.com/bid/94407","reference_id":"94407","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/"}],"url":"http://www.securityfocus.com/bid/94407"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://github.com/tats/w3m/blob/master/ChangeLog","reference_id":"ChangeLog","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T19:44:02Z/"}],"url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9437"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7qnk-cm5b-akdj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184699?format=json","vulnerability_id":"VCID-82rr-rq2t-xfa5","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9443.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9443.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9443","reference_id":"","reference_type":"","scores":[{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72698","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72775","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.7279","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72787","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9443"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9443","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9443"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399710","reference_id":"1399710","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399710"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9443"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-82rr-rq2t-xfa5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65158?format=json","vulnerability_id":"VCID-84j6-91vh-nbg1","summary":"The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to <dd> tags.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9435.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9435.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9435","reference_id":"","reference_type":"","scores":[{"value":"0.0141","scoring_system":"epss","scoring_elements":"0.80924","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0141","scoring_system":"epss","scoring_elements":"0.80994","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0141","scoring_system":"epss","scoring_elements":"0.80984","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0141","scoring_system":"epss","scoring_elements":"0.80985","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9435"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9435","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9435"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399694","reference_id":"1399694","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399694"},{"reference_url":"https://github.com/tats/w3m/issues/16","reference_id":"16","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/"}],"url":"https://github.com/tats/w3m/issues/16"},{"reference_url":"https://security.gentoo.org/glsa/201701-08","reference_id":"201701-08","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/"}],"url":"https://security.gentoo.org/glsa/201701-08"},{"reference_url":"http://www.openwall.com/lists/oss-security/2016/11/18/3","reference_id":"3","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/"}],"url":"http://www.openwall.com/lists/oss-security/2016/11/18/3"},{"reference_url":"https://github.com/tats/w3m/commit/33509cc81ec5f2ba44eb6fd98bd5c1b5873e46bd","reference_id":"33509cc81ec5f2ba44eb6fd98bd5c1b5873e46bd","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/"}],"url":"https://github.com/tats/w3m/commit/33509cc81ec5f2ba44eb6fd98bd5c1b5873e46bd"},{"reference_url":"http://www.securityfocus.com/bid/94407","reference_id":"94407","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/"}],"url":"http://www.securityfocus.com/bid/94407"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2016-12/msg00084.html","reference_id":"msg00084.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T18:49:27Z/"}],"url":"http://lists.opensuse.org/opensuse-updates/2016-12/msg00084.html"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9435"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-84j6-91vh-nbg1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5665?format=json","vulnerability_id":"VCID-8x9g-r3sd-r7g9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6196.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6196.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6196","reference_id":"","reference_type":"","scores":[{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71791","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71805","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71802","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0067","scoring_system":"epss","scoring_elements":"0.71824","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6196"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6196","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6196"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539157","reference_id":"1539157","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539157"},{"reference_url":"https://usn.ubuntu.com/3555-1/","reference_id":"USN-3555-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3555-1/"},{"reference_url":"https://usn.ubuntu.com/3555-2/","reference_id":"USN-3555-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3555-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106972?format=json","purl":"pkg:deb/debian/w3m@0.5.3-36?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-36%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2018-6196"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8x9g-r3sd-r7g9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179554?format=json","vulnerability_id":"VCID-bd6x-1swk-pqf8","summary":"An error in the hostname matching of w3m might enable remote\n    attackers to conduct man-in-the-middle attacks.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2074.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2074.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2074","reference_id":"","reference_type":"","scores":[{"value":"0.01841","scoring_system":"epss","scoring_elements":"0.83373","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01841","scoring_system":"epss","scoring_elements":"0.83434","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01841","scoring_system":"epss","scoring_elements":"0.83443","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01841","scoring_system":"epss","scoring_elements":"0.83439","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2074"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2074","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2074"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=587445","reference_id":"587445","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=587445"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=604855","reference_id":"604855","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=604855"},{"reference_url":"https://security.gentoo.org/glsa/201210-01","reference_id":"GLSA-201210-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201210-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0565","reference_id":"RHSA-2010:0565","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0565"},{"reference_url":"https://usn.ubuntu.com/967-1/","reference_id":"USN-967-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/967-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106969?format=json","purl":"pkg:deb/debian/w3m@0.5.2-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.2-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2010-2074"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bd6x-1swk-pqf8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184698?format=json","vulnerability_id":"VCID-dpk6-bf5f-8bd8","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9442.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9442.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9442","reference_id":"","reference_type":"","scores":[{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.73915","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.73989","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.74004","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.74003","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9442"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9442","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9442"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399707","reference_id":"1399707","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399707"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9442"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dpk6-bf5f-8bd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15858?format=json","vulnerability_id":"VCID-dqmq-v7am-3yf3","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-4255","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06105","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06128","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06122","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.0611","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-4255"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4255","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4255"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059265","reference_id":"1059265","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059265"},{"reference_url":"https://usn.ubuntu.com/6580-1/","reference_id":"USN-6580-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6580-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2023-4255"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dqmq-v7am-3yf3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199424?format=json","vulnerability_id":"VCID-dyzb-eta6-1kaj","summary":"w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1348.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1348.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2002-1348","reference_id":"","reference_type":"","scores":[{"value":"0.01658","scoring_system":"epss","scoring_elements":"0.8246","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01658","scoring_system":"epss","scoring_elements":"0.82522","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01658","scoring_system":"epss","scoring_elements":"0.82531","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01658","scoring_system":"epss","scoring_elements":"0.82526","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2002-1348"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1348","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1348"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616881","reference_id":"1616881","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2003:044","reference_id":"RHSA-2003:044","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2003:044"},{"reference_url":"https://access.redhat.com/errata/RHSA-2003:045","reference_id":"RHSA-2003:045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2003:045"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106964?format=json","purl":"pkg:deb/debian/w3m@0.3.2.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.3.2.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2002-1348"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dyzb-eta6-1kaj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2159?format=json","vulnerability_id":"VCID-g29z-425f-z3dv","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9625.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9625.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9625","reference_id":"","reference_type":"","scores":[{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73755","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73665","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.7374","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73757","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9625"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9625","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9625"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.openwall.com/lists/oss-security/2016/11/24/1","reference_id":"1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T16:26:39Z/"}],"url":"http://www.openwall.com/lists/oss-security/2016/11/24/1"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399720","reference_id":"1399720","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399720"},{"reference_url":"https://github.com/tats/w3m/issues/36","reference_id":"36","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T16:26:39Z/"}],"url":"https://github.com/tats/w3m/issues/36"},{"reference_url":"https://github.com/tats/w3m/blob/master/ChangeLog","reference_id":"ChangeLog","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-09T16:26:39Z/"}],"url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9625"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g29z-425f-z3dv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184691?format=json","vulnerability_id":"VCID-g8rs-ecbe-suek","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9431.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9431.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9431","reference_id":"","reference_type":"","scores":[{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71345","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71433","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71445","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71444","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9431"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9431","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9431"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399687","reference_id":"1399687","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399687"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9431"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g8rs-ecbe-suek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2166?format=json","vulnerability_id":"VCID-h7da-vg8u-w7ac","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9632.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9632.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9632","reference_id":"","reference_type":"","scores":[{"value":"0.00707","scoring_system":"epss","scoring_elements":"0.72624","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00707","scoring_system":"epss","scoring_elements":"0.72701","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00707","scoring_system":"epss","scoring_elements":"0.72716","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00707","scoring_system":"epss","scoring_elements":"0.72714","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9632"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9632","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9632"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399739","reference_id":"1399739","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399739"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9632"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h7da-vg8u-w7ac"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2111?format=json","vulnerability_id":"VCID-hj46-7364-gkhu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9439.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9439.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9439","reference_id":"","reference_type":"","scores":[{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.73915","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.73989","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.74004","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00767","scoring_system":"epss","scoring_elements":"0.74003","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9439"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9439","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9439"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399701","reference_id":"1399701","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399701"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844726","reference_id":"844726","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844726"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9439"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hj46-7364-gkhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2157?format=json","vulnerability_id":"VCID-jmk7-z24y-v3es","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9623.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9623.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9623","reference_id":"","reference_type":"","scores":[{"value":"0.01187","scoring_system":"epss","scoring_elements":"0.79216","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01187","scoring_system":"epss","scoring_elements":"0.7928","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01187","scoring_system":"epss","scoring_elements":"0.79294","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01187","scoring_system":"epss","scoring_elements":"0.79289","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9623"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399715","reference_id":"1399715","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399715"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9623"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jmk7-z24y-v3es"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2164?format=json","vulnerability_id":"VCID-k3a5-8nex-wua6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9630.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9630.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9630","reference_id":"","reference_type":"","scores":[{"value":"0.01112","scoring_system":"epss","scoring_elements":"0.78571","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01112","scoring_system":"epss","scoring_elements":"0.78637","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01112","scoring_system":"epss","scoring_elements":"0.78654","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01112","scoring_system":"epss","scoring_elements":"0.78649","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9630"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9630","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9630"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399737","reference_id":"1399737","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399737"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9630"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k3a5-8nex-wua6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184692?format=json","vulnerability_id":"VCID-k7rp-qsxe-xyfr","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9432.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9432.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9432","reference_id":"","reference_type":"","scores":[{"value":"0.00965","scoring_system":"epss","scoring_elements":"0.76986","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00965","scoring_system":"epss","scoring_elements":"0.77057","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00965","scoring_system":"epss","scoring_elements":"0.7707","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00965","scoring_system":"epss","scoring_elements":"0.77064","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9432"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9432","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9432"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399689","reference_id":"1399689","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399689"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9432"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k7rp-qsxe-xyfr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184686?format=json","vulnerability_id":"VCID-kaup-ddrt-1ue8","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9424.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9424.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9424","reference_id":"","reference_type":"","scores":[{"value":"0.00993","scoring_system":"epss","scoring_elements":"0.77336","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00993","scoring_system":"epss","scoring_elements":"0.77407","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00993","scoring_system":"epss","scoring_elements":"0.77422","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00993","scoring_system":"epss","scoring_elements":"0.77413","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9424"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399665","reference_id":"1399665","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399665"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9424"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kaup-ddrt-1ue8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2156?format=json","vulnerability_id":"VCID-kd7w-17zq-zfgq","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9622.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9622.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9622","reference_id":"","reference_type":"","scores":[{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75743","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75814","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75827","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75823","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9622"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399713","reference_id":"1399713","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399713"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9622"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kd7w-17zq-zfgq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2160?format=json","vulnerability_id":"VCID-km4n-n39b-4fdh","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9626.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9626.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9626","reference_id":"","reference_type":"","scores":[{"value":"0.00948","scoring_system":"epss","scoring_elements":"0.76786","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00948","scoring_system":"epss","scoring_elements":"0.76856","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00948","scoring_system":"epss","scoring_elements":"0.7687","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00948","scoring_system":"epss","scoring_elements":"0.76863","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9626"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399723","reference_id":"1399723","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399723"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9626"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-km4n-n39b-4fdh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2165?format=json","vulnerability_id":"VCID-kxxv-mh3t-bfbh","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9631.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9631.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9631","reference_id":"","reference_type":"","scores":[{"value":"0.00698","scoring_system":"epss","scoring_elements":"0.72427","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00698","scoring_system":"epss","scoring_elements":"0.72508","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00698","scoring_system":"epss","scoring_elements":"0.72522","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00698","scoring_system":"epss","scoring_elements":"0.72518","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9631"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399734","reference_id":"1399734","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399734"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9631"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kxxv-mh3t-bfbh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/178519?format=json","vulnerability_id":"VCID-m8y2-bhe8-3qbx","summary":"w3m does not correctly handle format string specifiers in SSL certificates.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6772.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6772.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6772","reference_id":"","reference_type":"","scores":[{"value":"0.13757","scoring_system":"epss","scoring_elements":"0.9444","published_at":"2026-06-11T12:55:00Z"},{"value":"0.13757","scoring_system":"epss","scoring_elements":"0.94459","published_at":"2026-06-12T12:55:00Z"},{"value":"0.13757","scoring_system":"epss","scoring_elements":"0.94465","published_at":"2026-06-13T12:55:00Z"},{"value":"0.13757","scoring_system":"epss","scoring_elements":"0.94466","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6772"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6772","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6772"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=221484","reference_id":"221484","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=221484"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=404564","reference_id":"404564","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=404564"},{"reference_url":"https://security.gentoo.org/glsa/200701-06","reference_id":"GLSA-200701-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200701-06"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106968?format=json","purl":"pkg:deb/debian/w3m@0.5.1-5.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.1-5.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2006-6772"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m8y2-bhe8-3qbx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199418?format=json","vulnerability_id":"VCID-ne6t-jjq2-vfgt","summary":"Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1335.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2002-1335.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2002-1335","reference_id":"","reference_type":"","scores":[{"value":"0.01398","scoring_system":"epss","scoring_elements":"0.80823","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01398","scoring_system":"epss","scoring_elements":"0.80883","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01398","scoring_system":"epss","scoring_elements":"0.80893","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01398","scoring_system":"epss","scoring_elements":"0.80885","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2002-1335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1335"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616875","reference_id":"1616875","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2003:044","reference_id":"RHSA-2003:044","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2003:044"},{"reference_url":"https://access.redhat.com/errata/RHSA-2003:045","reference_id":"RHSA-2003:045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2003:045"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106964?format=json","purl":"pkg:deb/debian/w3m@0.3.2.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.3.2.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2002-1335"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ne6t-jjq2-vfgt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184687?format=json","vulnerability_id":"VCID-nfnk-hcpq-93cx","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9425.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9425.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9425","reference_id":"","reference_type":"","scores":[{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.82087","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.82148","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.82157","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01594","scoring_system":"epss","scoring_elements":"0.8215","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9425"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9425","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9425"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399666","reference_id":"1399666","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399666"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9425"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nfnk-hcpq-93cx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184685?format=json","vulnerability_id":"VCID-njk6-tcat-e3aa","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9423.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9423.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9423","reference_id":"","reference_type":"","scores":[{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.77884","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.77953","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.77967","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.7796","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9423"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399664","reference_id":"1399664","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399664"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9423"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-njk6-tcat-e3aa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184688?format=json","vulnerability_id":"VCID-nqtf-1144-pufe","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9426.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9426.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9426","reference_id":"","reference_type":"","scores":[{"value":"0.00916","scoring_system":"epss","scoring_elements":"0.76373","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00916","scoring_system":"epss","scoring_elements":"0.76444","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00916","scoring_system":"epss","scoring_elements":"0.76458","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00916","scoring_system":"epss","scoring_elements":"0.76453","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9426"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399668","reference_id":"1399668","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399668"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9426"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nqtf-1144-pufe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65160?format=json","vulnerability_id":"VCID-nzxj-xgr9-pbbs","summary":"An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9422.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9422.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9422","reference_id":"","reference_type":"","scores":[{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.7796","published_at":"2026-06-14T12:55:00Z"},{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.77953","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.77884","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01043","scoring_system":"epss","scoring_elements":"0.77967","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9422"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9422","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9422"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399662","reference_id":"1399662","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399662"},{"reference_url":"https://security.gentoo.org/glsa/201701-08","reference_id":"201701-08","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/"}],"url":"https://security.gentoo.org/glsa/201701-08"},{"reference_url":"http://www.openwall.com/lists/oss-security/2016/11/18/3","reference_id":"3","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/"}],"url":"http://www.openwall.com/lists/oss-security/2016/11/18/3"},{"reference_url":"https://github.com/tats/w3m/issues/8","reference_id":"8","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/"}],"url":"https://github.com/tats/w3m/issues/8"},{"reference_url":"http://www.securityfocus.com/bid/94407","reference_id":"94407","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/"}],"url":"http://www.securityfocus.com/bid/94407"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://github.com/tats/w3m/blob/master/ChangeLog","reference_id":"ChangeLog","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-09T16:45:50Z/"}],"url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9422"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nzxj-xgr9-pbbs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5667?format=json","vulnerability_id":"VCID-pk42-k9t8-yqe1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6198.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6198.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6198","reference_id":"","reference_type":"","scores":[{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.2421","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24406","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.24416","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00083","scoring_system":"epss","scoring_elements":"0.244","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6198"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6198","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6198"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539127","reference_id":"1539127","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539127"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888097","reference_id":"888097","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888097"},{"reference_url":"https://usn.ubuntu.com/3555-1/","reference_id":"USN-3555-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3555-1/"},{"reference_url":"https://usn.ubuntu.com/3555-2/","reference_id":"USN-3555-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3555-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106972?format=json","purl":"pkg:deb/debian/w3m@0.5.3-36?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-36%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2018-6198"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pk42-k9t8-yqe1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184697?format=json","vulnerability_id":"VCID-ramg-vm56-xqb7","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9440.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9440.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9440","reference_id":"","reference_type":"","scores":[{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79375","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79442","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79457","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01208","scoring_system":"epss","scoring_elements":"0.79453","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9440"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9440","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9440"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399702","reference_id":"1399702","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399702"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9440"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ramg-vm56-xqb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184689?format=json","vulnerability_id":"VCID-rk2r-sh3s-nkf5","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9429.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9429.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9429","reference_id":"","reference_type":"","scores":[{"value":"0.00844","scoring_system":"epss","scoring_elements":"0.7522","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00844","scoring_system":"epss","scoring_elements":"0.7529","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00844","scoring_system":"epss","scoring_elements":"0.75304","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00844","scoring_system":"epss","scoring_elements":"0.753","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9429"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9429","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9429"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399682","reference_id":"1399682","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399682"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9429"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rk2r-sh3s-nkf5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5666?format=json","vulnerability_id":"VCID-sfjg-dc5c-nuab","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6197.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-6197.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6197","reference_id":"","reference_type":"","scores":[{"value":"0.0044","scoring_system":"epss","scoring_elements":"0.63615","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0044","scoring_system":"epss","scoring_elements":"0.63717","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0044","scoring_system":"epss","scoring_elements":"0.63731","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0044","scoring_system":"epss","scoring_elements":"0.63729","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-6197"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6197","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6197"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539151","reference_id":"1539151","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539151"},{"reference_url":"https://usn.ubuntu.com/3555-1/","reference_id":"USN-3555-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3555-1/"},{"reference_url":"https://usn.ubuntu.com/3555-2/","reference_id":"USN-3555-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3555-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106972?format=json","purl":"pkg:deb/debian/w3m@0.5.3-36?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-36%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2018-6197"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sfjg-dc5c-nuab"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184693?format=json","vulnerability_id":"VCID-wck7-mtmp-f3dp","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9433.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9433.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9433","reference_id":"","reference_type":"","scores":[{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71345","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71433","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71445","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00651","scoring_system":"epss","scoring_elements":"0.71444","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9433"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9433","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9433"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399690","reference_id":"1399690","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399690"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9433"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wck7-mtmp-f3dp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/12296?format=json","vulnerability_id":"VCID-yrj7-qcqc-q7d9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38223.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38223.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-38223","reference_id":"","reference_type":"","scores":[{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34164","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34342","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34366","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34345","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-38223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38223"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019599","reference_id":"1019599","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019599"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2126270","reference_id":"2126270","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2126270"},{"reference_url":"https://usn.ubuntu.com/5796-1/","reference_id":"USN-5796-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5796-1/"},{"reference_url":"https://usn.ubuntu.com/5796-2/","reference_id":"USN-5796-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5796-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106973?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2022-38223"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yrj7-qcqc-q7d9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184694?format=json","vulnerability_id":"VCID-z1pe-9gdp-g3gp","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9434.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9434.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9434","reference_id":"","reference_type":"","scores":[{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72698","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72775","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.7279","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72787","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9434"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9434","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9434"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399691","reference_id":"1399691","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399691"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9434"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z1pe-9gdp-g3gp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184696?format=json","vulnerability_id":"VCID-zfcs-v4tv-gygd","summary":"Multiple vulnerabilities have been found in w3m, the worst of which\n    could lead to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9438.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9438.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9438","reference_id":"","reference_type":"","scores":[{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72698","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72775","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.7279","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72787","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9438"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9438","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9438"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399699","reference_id":"1399699","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399699"},{"reference_url":"https://security.archlinux.org/ASA-201611-18","reference_id":"ASA-201611-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-18"},{"reference_url":"https://security.archlinux.org/AVG-73","reference_id":"AVG-73","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-73"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106970?format=json","purl":"pkg:deb/debian/w3m@0.5.3-30?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-30%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9438"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zfcs-v4tv-gygd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2158?format=json","vulnerability_id":"VCID-znt5-k41y-eqhy","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9624.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9624.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9624","reference_id":"","reference_type":"","scores":[{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75743","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75814","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75827","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75823","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399718","reference_id":"1399718","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399718"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9624"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-znt5-k41y-eqhy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2163?format=json","vulnerability_id":"VCID-zuv1-e4qp-dfcv","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9629.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9629.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9629","reference_id":"","reference_type":"","scores":[{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73567","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.7348","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73554","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73569","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9629","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9629"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.openwall.com/lists/oss-security/2016/11/24/1","reference_id":"1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:45Z/"}],"url":"http://www.openwall.com/lists/oss-security/2016/11/24/1"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399732","reference_id":"1399732","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399732"},{"reference_url":"https://github.com/tats/w3m/issues/40","reference_id":"40","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:45Z/"}],"url":"https://github.com/tats/w3m/issues/40"},{"reference_url":"https://github.com/tats/w3m/blob/master/ChangeLog","reference_id":"ChangeLog","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:45Z/"}],"url":"https://github.com/tats/w3m/blob/master/ChangeLog"},{"reference_url":"https://usn.ubuntu.com/3214-1/","reference_id":"USN-3214-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3214-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/106971?format=json","purl":"pkg:deb/debian/w3m@0.5.3-33?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3-33%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106965?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20210102-6%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20210102-6%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106963?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-dqmq-v7am-3yf3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106967?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/106966?format=json","purl":"pkg:deb/debian/w3m@0.5.3%2Bgit20230121-2.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.3%3Fdistro=trixie"}],"aliases":["CVE-2016-9629"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zuv1-e4qp-dfcv"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/w3m@0.5.3%252Bgit20230121-2.1%3Fdistro=trixie"}